Java security concerns recently issued by US Dept. of Homeland Security

  • 1
  • Question
  • Updated 6 years ago
  • Answered
Archived and Closed

This conversation is no longer open for comments or replies and is no longer visible to community members. The community moderator provided the following reason for archiving: Old

When will SPS Commerce abandon Java, used by their Webforms product, due to concerns raised and recommendations recently issued by the US Dept. of Homeland Security that all computers should have Java uninstalled because of vulnerabilities that allow a hacker to take control of system(s) running Java?
Photo of John Redfield

John Redfield

  • 70 Points

Posted 6 years ago

  • 1
Photo of Lisa Sacquitne

Lisa Sacquitne, Product Manager

  • 2,358 Points 2k badge 2x thumb
Hi John, Thank you for posting your topic! We definitely recognize that this is a concern of our WebForms customers. I wanted to let you know that I will be directing this topic to our Product Management team for further review as this is something that would be a major adjustment to the product. I know that Java released a security patch on January 15th to address these concerns in Java version 7 update 11 and we recommend that you update any computers running WebForms to this latest version.
Photo of Colin Walker

Colin Walker, Alum

  • 996 Points 500 badge 2x thumb
Hi John,

Thanks for voicing your concern about Java and the security issues raised by the DHS. In the short term, I agree completely with Lisa. We recommend you upgrade to the patched version of Java (7 update 11). This update addresses the security concerns behind the DHS' recommendation. In the long term, we are currently examining our options concerning the Java technology that powers WebForms. We take this issue very seriously. Again, we appreciate your input and are committed to providing an environment that engenders confidence in your system's security over the long run.

Regards,
Colin

This conversation is no longer open for comments or replies.