Greetings:
I am currently developing a number of Java applets for Netscape which
require special permissions to do things like write files, which violate
Netscape's Java security model. To that end, I need to create signed
jar files, using a developer certificate.
Unfortunately, I do not know what the difference is, between a user
certificate, and a Netscape developer certificate, since I don't know
how to extract developer certificates from signed jar files. Does
anyone have a Netscape developer certificate I can look at? I would
like to run "x509 -text" on it to see what x509 fields are being used.
In addition, can I use any open source product, like openssl, to sign
Java jar files for use in a Netscape browser? If no open source
product is available for jar signing, are there any non-open-source
products that I can use for NetBSD (most perfered), FreeBSD, OpenBSD,
or Linux, all on ix86 hardware?
Although I am quite adept at creating and using user and server
certificates, I have no experience at creating and using Netscape
developer certificates. I would greatly appreciate any help on this
matter.
Once I have mastered developer certs, issued from my own private CA,
I then plan to buy commerical Netscape developer certs (likely from
Thawte), to sign my java for mass distribution.
Thanks in advance. Sincerely, Alicia.
PS. Has anyone coded a 100% java class, Java 1.02 compatible, that
can run on Netscape without plugins, that can basic sslv2?
At least enough to talk to an HTTPS server. I have Java
classes for RSA, 3DES, MD5, SHA, and a decent random
generating for session keys using keystroke timmings, so
it doesn't sound impossible for Java to do basic ssl. Sure
Java is very slow compared to C binaries, but for small
chunks of data, this is acceptable on the client side.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
