Currently, the classloader system is the issue to get AS5 working under a security manager. Your approach of security.xml did the same (introduction of SM after the CL). file:/some/directory/my.jar/sub.jar is still being opened and its permissions read by the Policy implementation. This is where we have issues. We cannot read the vfs urls and the introduction of the VFS handlers into bootstrap is unknown territory at the moment. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4188139#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...