problem: in the jdk7 code, the code for getting security baseline for 7 family is missing. so it defaults to use the current running version as baseline for 7 family.
so when you run an applet with 7u2, and if the applet requests 7u1, we will shown ssv dialog, even if 7u1 should be a valid security baseline. this is because 7u2 code thinks the security baseline is 7u2, and 7u1 is insecure.
fix: implement security baseline for 7 family.
testcase: install 7u2, install 7u1, run this jnlp applet that requests 7u1 and make sure no ssv dialog is shown.