Ignition and Java Security
© 2017 Inductive Automation
2 | 9
800.266.7798
www.inductiveautomation.com
Ignition and Java Security: Why and How Ignition
Uses Java to Create Secure, Cross-Platform Systems
Ignition by Inductive Automation is
the first SCADA software solution
built entirely on Java. Ignition’s use
of Java makes it totally cross-
platform compatible and easily web-
deployable, two major reasons for
the software’s growing community
of global Ignition users.
Java is a well-established programming language
that has been used and trusted around the world
for more than 20 years. Java was released in 1995
and quickly became one of the top programming
languages in the world. Since 2001, it has held
the number-one or number-two spot on the
TIOBE Index.¹
According to Oracle, which has owned and
supported Java since 2009, Java is running on 15
billion devices, is used by 10 million developers
worldwide, 5 million students are learning Java,
and it’s the number-one platform for development
in the cloud.²
Java is used by thousands of major companies.
Consider that IBM uses Java across all of its
computing platforms.³ IBM mainframes are used
by 92 of the world’s 100 largest banks and 9 out
of the world’s 10 largest insurance companies; and
by 71% of global Fortune 500 companies.⁴
Why is Ignition Built on Java?
At Inductive Automation, our mission is to develop
industrial automation software that pushes the
boundaries of innovation and empowers our
users. We understood that technologies from the
IT world had great potential to revolutionize the
industrial world. Ignition leverages Java and other
IT technologies such as SQL to enable companies
in almost every industry to do more with new and
existing infrastructures.
Our first and foremost reason for using Java is
that it’s based on the concept of “write once, run
anywhere.” Its portability enables Ignition to be a
cross-platform solution which users can run on any
operating system.⁵
Also, Java is network-centric, which gives
Ignition its web-deployed capability. Developers
can work with resources across a network and
create network-based applications using client/
server architecture.
Another reason is that Java is well-supported. The
Java community is over 10 million developers
strong and continues to grow, so there is a gigantic
talent pool of skilled Java developers. Java has
an extraordinarily rich set of libraries, so there are
a phenomenal number of resources available for
developing with Java.
These are all factors that let us remain nimble
and make Ignition the product that our customers
demand.
What About Security?
We are confident that Java continues to be the right
choice for Ignition and delivers the performance
our growing community of users is looking for. Its
continued, widespread use by major companies
and its popularity among programmers are a
testament to its security and reliability.
As we’ll explain in the next part of this paper, there
are many dierent parts within Java, and the security
issues are generally limited to the Java browser
plug-in, not the Java language or API. Oracle has
met these issues head-on by removing the Java
Web Browser Plug-In from future versions.
Furthermore, most web browsers have either
stopped supporting the Java Web Browser Plug-In
or disabled it by default. Ignition clients do not
require Java in the web browser in order to run.
If you’d like more detail about these issues, please
read the rest of this paper for a deeper look inside
Java and some steps you can take to keep your
Ignition system safe.