UNsigned applets by default run in the sandbox; signed applets (including self-signed) run with full permissions unless you specify otherwise in the HTML and in the JAR manifest (where you can explicitly request sandbox-only execution).
UNsigned applets by default run in the sandbox; signed applets (including self-signed) run with full permissions unless you specify otherwise in the HTML and in the JAR manifest (where you can explicitly request sandbox-only execution).