Note: This Java deployment guide describes features released prior to the Java SE 6 update 10 release. See Java Rich Internet Applications Development and Deployment for the latest information.
After repackaging signed
.cab files as
.jar files, an applet running in the Sun JRE is
treated as unsigned. But, the same applet which is packaged as
.cab files runs as signed in the Microsoft Virtual
Microsoft supports signing applets through its own proprietary
.cab file technologies. The signing
information is lost in the process of repackaging. As a result, the
Sun JRE implementation treats the
.jar files as
.jar files by using the
jarsigner tool of the Java Development Kit (JDK) by
using the following method:
keytoolcommand and an alias name. For example, type the following command:
C:\>C:\jdk1.6.0\bin\keytool -import -alias MyCert -file VSSStanleyNew.cer
jarsignercommand to sign the
.jarfile, by using the RSA credentials in your keystore that were generated in the previous step. Make sure the same alias name is specified. For example, type the following command:
C:\>C:\jdk1.6.0\bin\jarsigner C:\TestApplet.jar MyCertWhen you type the above command, the following response appears. Type the Passphrase that you provided while generating the credentials for keystore in the above step.
Enter Passphrase for keystore:Type the Passphrase that you provided while generating the credentials for keystore.
jarsigner -verify -verbose -certs" to verify the
C:>C:\jdk1.6.0\bin\jarsigner -verify -verbose -certs d:\TestApplet.jar 245 Wed Mar 10 11:48:52 PST 2000 META-INF/manifest.mf 187 Wed Mar 10 11:48:52 PST 2000 META-INF/MYCERT.SF 968 Wed Mar 10 11:48:52 PST 2000 META-INF/MYCERT.RSA smk 943 Wed Mar 10 11:48:52 PST 2000 TestApplet.class smk 163 Wed Mar 10 11:48:52 PST 2000 TestHelper.class X.509, CN=XXXXXXX YYY, OU=Java Software, O=Sun Microsystems, L=Cupertino, ST=CA, C=US (mycert) X.509, CN=Sun Microsystems, OU=Java Plug-in QA, O=Sun Microsystems, L=Cupertino, ST=CA, C=US X.509, EmailAddressfirstname.lastname@example.org, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, ST=Western Cape, C=ZA s = signature was verified m = entry is listed in manifest k = at least one certificate was found in keystore i = at least one certificate was found in identity scope jar verified.
See Signing applets using RSA certificates for more information on how to sign applets.