From: paulemile.veuve@bnpgroup.com
To: java-security@java.sun.com
Message-Id: <C12567C8.00485B35.00@SMTP_PARIS1.bnpgroup.com>
Date: Mon, 9 Aug 1999 15:12:17 +0200
Subject: Sign applet in java 1.1.7 with RSA (?)
Hi,
I'm a french student, working for a bank (BNP) during the holidays. I have
been developing an applet for two months, which launchs requests to a
database SQL server 6.5 (with JDBC-ODBC technology),
displays the informations and allows some treatments and updates. I use the
three-tiers model, as recommended in the tutorial. There no problem with
it. But I need to sign my applet in order to be allowed to write
files on the local disk, launch programs like Winword or Excel, and print
one of the panel contained in my applet. Here are the tools used :
jdk 1.1.7 from IBM
Netscape Navigator 4.5 and Internet Explorer 5
Windows NT 4
I succeed in generating public and private keys, a certificate and a
signature for my jar archive with javakey. But when I try to download my
applet with Netscape 4.5, I get the following error message in the java
console :
# Error: Invalid Hash of this JAR entry (-7882)
# jar file: D:\TEMP\jzipO455.TMP
# path: BaseDeDonnees.class
# Error: Strange PKCS7 or RSA failure (-7881)
# jar file: D:\TEMP\jzipO455.TMP
# path: D:\TEMP\jzipO455.TMP
# Error: loading of signatures has failed (-1)
# jar file: D:\TEMP\jzipO455.TMP
# path: /scripts/newtrackerreportjava/
I used the DSA algorithm to obtain my keys since the jdk 1.1.7 only offers
this one in package java.security.interface. And I red that the navigators
only support RSA algorithm.
What can I do to sign my applet :
Find the java's classes implementing the RSA algorithm (where ?) and
using them to sign my applet.
Change my jdk and take the 1.2 version (I would prefer not to use it).
What about java plug-in, the possible netscape solutions, ... ?
Please, help me to solve that problem quickly !!!!
I'm fond of Java and I wouldn't disappoint my employer. Please answer me
soon.
Best regards,
Paul-Emile Veuve
_____________________________________________________________________________________________________________________________________
L integrite de ce message n etant pas assuree sur Internet, la BNP ne peut etre tenue responsable de son contenu.
Si vous n'etes pas destinataire de ce message, merci de le detruire et d'avertir l expediteur.
----------------------------------------------------------------------------------
The integrity of this message cannot be guaranteed on the Internet. BNP can not therefore be considered responsible for the contents.
If you are not the intended recipient of this message, then please delete it and notify the sender.
_____________________________________________________________________________________________________________________________________