Date: Thu, 20 Mar 1997 14:17:49 -0500
From: "W. Brian Blevins" <brian@maxtech.com>
To: java-security@java
Subject: http://java.sun.com/security/signExample/ and Certificate Authorities?
Java-Security,
Will HotJava automatically ask a user whether to trust my signed
applet from a JAR file? Or will all of my customers be forced
to add my certificate with trust to each and every client? If so,
what happened to the zero admin client and the network computing
model?
If there is no certificate authority involved, what is to stop
some one from using someone else's name when signing possibly
malicious applets?
Please tell me that HotJava supports or will soon certificate
authorities.
The viability of my product over the WWW/Internet depends on
some type of on-the-fly trust on the client system.
Brian
brian@maxtech.com