Support "declaritive" security model in JNLP applications and Java applets to declare (using a policy file) the permissions they require, so users only need to grant a limited set of permissions to execute the applications/applets instead of simply giving out "AllPermissions".
See A360 ID 563622 JDK8/8/Plugin and Deployment Entry "Pre-configured security policy for signed Java applets and JNLP applications"