SIGNING JAR FILES

Devi, Rama (Rama.Devi@mci.com)
Thu, 29 Jan 1998 19:57:01 -0000

From: "Devi, Rama (c)" <Rama.Devi@mci.com>
To: "'java-security@java.sun.com'" <java-security@web2.javasoft.com>
Subject: SIGNING JAR FILES
Date: Thu, 29 Jan 1998 19:57:01 -0000

HI,

My name is Rama and I work for MCI. I have a few problems and questions
reagrding signing JAR files and would be grateful if you could help me
out.

I have a huge java web based application and I need to use archives to
reduce the download time.
I created a JAR file to bundle all my application packages/classes.
I signed the JAR file following the instructions detailed at
http://www.javasoft.com/security/usingJavakey.html

In my applet html file I included the line
ARCHIVE="xxxx.jar.sig" to download the archive. (I also tried
ARCHIVE="xxxx.jar")

I also have this restriction of using only Internet Explorer 4.0 as my
browser to get to my web site and download my class files and run the
application.

The downloading of the JAR file is ok, but I still get the applet
warning on my windows which I presume means that the signing stuff
really did not work.

Questions.
What more do I need to do for signing the JAR file in order to do away
with the applet warning? Do I have to introduce some kind of
permissions? If so how and where do I do it?
Can I use signed JAR files with IE 4.0?

Your speedy answers will be greatly appreciated. I am running out of
time.

My Email address : Rama.Devi@mci.com

Thanks a lot.
Rama