{Complexity} » Security http://technote.wsjoung.com simple note Wed, 09 Nov 2011 02:12:28 +0000 en hourly 1 http://wordpress.org/?v=3.2.1 remove ssl encryption http://technote.wsjoung.com/2010/10/30/remove-ssl-encryption/ http://technote.wsjoung.com/2010/10/30/remove-ssl-encryption/#comments Sat, 30 Oct 2010 22:56:24 +0000 admin http://technote.wsjoung.com/?p=174 openssl rsa -in server.key -out server.key.new

mv server.key.new server.key

chmod 600 server.key

]]> http://technote.wsjoung.com/2010/10/30/remove-ssl-encryption/feed/ 0 Signed java applet http://technote.wsjoung.com/2007/05/15/signed-java-applet/ http://technote.wsjoung.com/2007/05/15/signed-java-applet/#comments Tue, 15 May 2007 17:43:00 +0000 admin http://wsjoung.wordpress.com/2007/05/15/signed-java-applet/ Applet Security Basics

Below are the basic facts regarding applet security and Java Plug-in. More detail can be found in the next chapter, How RSA Signed Applet Verification Works in Java Plug-in.

  • All unsigned applets are run under the standard applet security model.
  • If usePolicy IS NOT DEFINED in the java.policy file, then a signed applet has the AllPermission permission if:
    Java Plug-in can verify the signers, and the user, when prompted, agrees to granting the AllPermission permission.
  • If usePolicy IS DEFINED, then a signed applet has only the permissions defined in java.policy and no prompting occurs.

Moreover, note that Java Plug-in now handles certificate management; i.e., the certificate verification task is no longer passed off to the browser.

keytool -genkey -keyalg rsa -alias MyCert
keytool -certreq -alias MyCert
keytool -import -alias MyCert -file VSSStanleyNew.cer

or

keytool -selfcert

and

jarsigner AppletName.jar MyCert
jarsigner -verify -verbose -certs AppletName.jar

]]> http://technote.wsjoung.com/2007/05/15/signed-java-applet/feed/ 0