Interesting that whoever thinks the security is part of the Java language
has fallen for Sun's marketing  con  whereby they hope everyone will confuse
the JVM and the standard APIs with the Java language itself and vice
versa.

But, back to the matter it hand:

The alleged Java security has two purposes:

1. Prevent applets from unknown or untrusted sources from violating
security.

2. Prevent unknown or untrusted people from using your applets to violate
security.

Answer:

1. DoD should not be using applets from unknown or untrusted sources.
   Plus, a ban on a particular programming language obviously has no
   effect on applets from unknown or untrusted sources.

2. Your applets must be designed, reviewed, and tested to meet your
   security requirements, no matter what language they were written in and
   no matter what CPU or virtual CPU they run on.

--
Wes Groleau
http://freepages.genealogy.rootsweb.com/~wgroleau