Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Programming > Java > Certificate questions

Reply
Thread Tools

Certificate questions

 
 
Guest
Posts: n/a
 
      08-28-2003
1. it is needed only for Java Applets? I think Java programs not need certificate because running locally from user.
2. with a certificate a Java Applet can do anything? I mean file reading/writting, connection with any server etc
3. where can I buy a certificate?
4. what is a certificate? a text file with a long length password?
5. I saw many of these files inside JAR files but I cannot steel these files (for experiment of course) because these files are not
working. Maybe this files are MD5 of original certificate (or other encryption method?)
6. If certificate is a file, and I have bought a certificate, how can I add this certificate to my code?
7. for every product I must buy a new certificate or I can use the same?

thanks for your response...


 
Reply With Quote
 
 
 
 
Matt Humphrey
Guest
Posts: n/a
 
      08-28-2003

"<- Chameleon ->" <(E-Mail Removed)> wrote in message
news:bikjnc$6f4$(E-Mail Removed)...

Certificates are cryptographically signed files that are used to verify
identity. Some details about Java and Certificates is at:
http://www.suitable.com/docs/signing...w.html#sandbox

> 1. it is needed only for Java Applets? I think Java programs not need

certificate because running locally from user.

Java applets that want to be able to request special privileges need to be
signed--identified by a certificate.

> 2. with a certificate a Java Applet can do anything? I mean file

reading/writting, connection with any server etc

No. Signing merely enables the applet to request special privileges such as
being able to read or write to local files, connect to any server, etc. The
user must still approve the request.

> 3. where can I buy a certificate?


There are a couple of companies and they provide varying levels of surety of
identity. Verisign and Thawte are two.

> 4. what is a certificate? a text file with a long length password?


It is a file containing your identity information (including a public key)
that has been encrypted with the private key of the authority from whom you
got the certificate, which means that the public key of that authority
(which is usually available pre-installed in web browsers, etc) can verify
your identity.

> 5. I saw many of these files inside JAR files but I cannot steel these

files (for experiment of course) because these files are not
> working. Maybe this files are MD5 of original certificate (or other

encryption method?)

Certificates are in a standard format, but they really only work for the
owner because you must have the private key that goes with the public key in
the certificate.

> 6. If certificate is a file, and I have bought a certificate, how can I

add this certificate to my code?

Essentially you put it in the jar file, but that's not where it's power
comes from. You use your associated private key to sign your code--to
encrypt your code, which only you have. You then hand out the certificate,
which contains your public key. Because only your public key decrypts your
code they are assured that someone has verified your identity. Of course,
they must still decide whether or not to trust you...

> 7. for every product I must buy a new certificate or I can use the same?


The certificate identifies you. You really only need one.

Good luck,
Matt Humphrey http://www.velocityreviews.com/forums/(E-Mail Removed) http://www.iviz.com/


 
Reply With Quote
 
 
 
 
Kevin Hooke
Guest
Posts: n/a
 
      08-28-2003
If you check out the section on security in the online Java Tutorial there
is a good section on signing applets. It also covers how you can generate
you own 'self-signed' certificate for testing - this may let you investigate
what you are trying to do before you invest in purchasing your own 'real'
certificate.

http://java.sun.com/docs/books/tutor...1.2/index.html


--
Kevin Hooke

MindBeans Software Consulting
http://www.mindbeans.net

"<- Chameleon ->" <(E-Mail Removed)> wrote in message
news:bikjnc$6f4$(E-Mail Removed)...
> 1. it is needed only for Java Applets? I think Java programs not need

certificate because running locally from user.
> 2. with a certificate a Java Applet can do anything? I mean file

reading/writting, connection with any server etc
> 3. where can I buy a certificate?
> 4. what is a certificate? a text file with a long length password?
> 5. I saw many of these files inside JAR files but I cannot steel these

files (for experiment of course) because these files are not
> working. Maybe this files are MD5 of original certificate (or other

encryption method?)
> 6. If certificate is a file, and I have bought a certificate, how can I

add this certificate to my code?
> 7. for every product I must buy a new certificate or I can use the same?
>
> thanks for your response...
>
>



 
Reply With Quote
 
Roedy Green
Guest
Posts: n/a
 
      08-28-2003
On Thu, 28 Aug 2003 12:58:33 +0300, "<- Chameleon ->"
<(E-Mail Removed)> wrote or quoted :

>1. it is needed only for Java Applets? I think Java programs not need certificate because running locally from user.
>2. with a certificate a Java Applet can do anything? I mean file reading/writting, connection with any server etc
>3. where can I buy a certificate?
>4. what is a certificate? a text file with a long length password?
>5. I saw many of these files inside JAR files but I cannot steel these files (for experiment of course) because these files are not
>working. Maybe this files are MD5 of original certificate (or other encryption method?)
>6. If certificate is a file, and I have bought a certificate, how can I add this certificate to my code?
>7. for every product I must buy a new certificate or I can use the same?



see http://mindprod.com/jgloss/certificate.html

--
Canadian Mind Products, Roedy Green.
Coaching, problem solving, economical contract programming.
See http://mindprod.com/jgloss/jgloss.html for The Java Glossary.
 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Win32::OLE and CAPICOM to find a certificate in certificate store will raise exception danielhe99@gmail.com Perl Misc 0 07-20-2006 06:47 AM
Questions on Canon 300D and etc. questions regarding digital photography Progressiveabsolution Digital Photography 12 03-24-2005 05:18 PM
Re: autoenrolment/certificate questions Shawn Corey [MSFT] Wireless Networking 0 11-16-2004 08:46 PM
How to Import Certificate file into windows certificate store under IWAM account Helena Cai ASP General 0 08-29-2004 05:27 AM
Re: Questions....questions....questions Patrick Michael A+ Certification 0 06-16-2004 04:53 PM



Advertisments