Evolution of the Java Security Model JDK 1.0 Model - sandbox JDK 1.1 Model - trusted, signed applets and sandbox JDK 1.2 - all code subject to security policy, which defines the permissions on actions Domains aggregate code with same permissions