Export the Public Key Certificate (The Java™ Tutorials > Security Features in Java SE > Signing Code and Granting It Permissions)


NOTA: La traducción de esta documentación es un esfuerzo personal y voluntario, no es un documento oficial de Sun Microsystems ni Oracle ni está patrocinado por ninguna de estas empresas. Los documentos originales (en inglés) están disponibles en: http://java.sun.com/docs/books/tutorial/. Dirija cualquier comentario, petición, felicitación, etc. a tutorialesjava_@RROBA_codexion.com.	Si desea ayudar a mantener en funcionamiento esta web, colaborar con la traducción de estos documentos o necesita que se traduzca algún capítulo en concreto puede realizar una donación directa mediante Paypal:

Trail: Security Features in Java SE
Lesson: Signing Code and Granting It Permissions
Section: Steps for the Code Signer

Signing Code and Granting It Permissions

Steps for the Code Signer

Download and Try the Sample Application

Create a JAR File Containing the Class File

Generate Keys

Sign the JAR File

Export the Public Key Certificate

Steps for the Code Receiver

Observe the Restricted Application

Import the Certificate as a Trusted Certificate

Set Up a Policy File to Grant the Required Permission

Start Policy Tool

Specify the Keystore

Add a Policy Entry with a SignedBy Alias

Save the Policy File

See the Policy File Effects

« Previous • Trail • Next »

Export the Public Key Certificate

You now have a signed JAR file sCount.jar. The runtime system of the code receiver (Ray) will need to authenticate the signature when the Count application in the signed JAR file tries to read a file and a policy file grants that permission to this signed code.
In order for the runtime system to authenticate the signature, Ray's keystore needs to have the public key corresponding to the private key used to generate the signature. You supply this by sending Ray a copy of the certificate authenticating the public key. Copy that certificate from the keystore susanstore to a file named SusanJones.cer via the following:
keytool -export -keystore susanstore -alias signFiles -file SusanJones.cer
You will be prompted for the store password (ab987c).

« Previous • Trail • Next »

Problems with the examples? Try Compiling and Running the Examples: FAQs.
Complaints? Compliments? Suggestions? Give us your feedback.

Your use of this page (http://java.sun.com/docs/books/tutorial (Last Updated 2/14/2008)) and all the material on pages under "The Java Tutorials" banner is subject to the Terms of Use. Additionally, (i) any example code contained in any of these Java Tutorials pages is also licensed under the Code Sample License, and (ii) the entire Java Tutorials content is available for download under the Java Tutorials Limited Non-Commercial License for limited, non-commercial individual and/or research and instructional use at Sun Download Center.

About Sun | About This Site | Terms of Use | Trademarks

Previous page: Sign the JAR File
Next page: Steps for the Code Receiver