Date: Tue, 28 Jan 1997 16:29:57 -0800
From: Andrew Davidson <aed@scruz.net>
To: java-security@java
Subject: will code signing enable me to do the following?
the html page
jdk1.1-beta3/docs/guide/security/JavaSecurityOverview.html#JavaSecurity
API Documentation
contains the following:
------------------ begin html ----------
Code Signing in Java
If you develop Java applications and Java applets, you may want to use
the Java code-signing features. Two sample reasons for using
code-signing features are the following:
If you develop applets, you may want them to be released from
the stringent security restrictions imposed by the normal applet
security model (the so-called sandbox model).
------------------- end html -----------
How can I find out what additional access my applets will have if I sign
them?
I am trying to build an intranet application where the signed applets
are loaded into a browser like hot java from a web server. The applets
use JavaIDL to contact servers running on several different machines.
These services will never be on the same machine as the web server. will
this work with signed applets?
Will my applets be able to figure out what the user id and IP address of
machine the browser is running on? The users of this system are
telephone operators entering finical transaction on behalf of the
customer calling in over the phone. For auditing reason, I need to be
able to keep track of who did what, when, and where.
thanks in advance
andy
--------------------------------------------
Andrew E. Davidson
email: aed@scruz.net
voice: (408) 338 - 0888