[skybrian]

Applets were invented at a time when there was competition between language-level sandboxing (Java) versus code signing (Active X).

Today we understand that you need language-level sandboxing, OS-level sandboxing, permissions enforcement, code signing, and a way to revoke bad apps. (Android store, for example.) And it's not really enough.

Most of us have moved on, but I think Oracle deserves some credit for doing something to protect the people who still must rely on applets for some reason (probably legacy apps).