Applet-signing problem with JavaPlugin 1.1.1

Per Bjornelf (per.bjornelf@eng.ericsson.se)
Mon, 31 Aug 1998 11:11:51 +0200

Hello!
How do I sign my applet to get it to run in
Netscape Communicator 4.04 with=20
SUNs JavaPlugin 1.1.1 ?
It works okay with the browsers default JVM.=20
But since I want to use your latest JDK and also=20
want my applet to run in MS Explorer too,=20
I need to know how it=20
works with my THAWTE-cerificate and=20
JAVAPLUGIN 1.1.1

I did sign my applet with signtool=20
and if the solution is to sign with your=20
Javakey-tool,please let me know exactly how=20
to do this.

I tried out javakey and I did it like this
but I couldn=B4t get it okay though.
my certificate=3Dcert7.db
my private key=3Dkey3.db

1.javakey -cs "TESTID" true ---create ID in the
identitydb.obj-file.
2.javakey -gc cert_directive.txt---use this cert
3.jar cf test.jar *.* ----create jar-file
4.javakey -gs sign_directive.txt test.jar---sign
the jar-file

********************************************************************
**************sign_directive.txt-file includes**********************
********************************************************************
#
# 96/09/22 @(#)sigdir 1.1
#=20
#
# Jar signing directive. This is the directive file used by javakey to=20
# sign a jar file.
#

# Which signer to use. This must be in the system's database.

signer=3Dtestid

# Cert number to use for this signer. This determines which
# certificate will be included in the PKCS7 block. This is mandatory
# and is 1 based. =20

cert=3D0

# Cert chain depth of a chain of certificate to include. This is
# currently not supported.

chain=3D0

# The name to give to the signature file and associated signature
# block. (i.e. DUKESIGN.SF and DUKESIGN.DSA). This must be 8
# characters or less.

signature.file=3Dtestsig

********************************************************************
**************cert_directive.txt-file includes**********************
********************************************************************
# 96/09/22 @(#)sigdir 1.1
#
# 96/11/11 @(#)cert_directive 1.3
#=20

#
# This is a sample certificate directive file.=20
#

# the id of the signer

issuer.name=3Dtestid

# the cert to use for the signing (this is where it gets it DN)

issuer.cert=3Dcert7.db

# the id of the subject

subject.name=3Dtestid

# the components of the X500 name for the subject

subject.real.name=3DPer Bjornelf
subject.org.unit=3DCockpit group
subject.org=3DEricsson Data Norrkoping AB
subject.country=3DSWE

# Various parameters: start and end date for validity and expiration
# of the certificate. Serial number. FIle to which to output the
# certificate (optional).

start.date=3D28 Aug 1998
end.date=3D28 Aug 1999
serial.number=3D1001
out.file=3Dmrm.x509
********************************************************************
********************************************************************
********************************************************************

I get this (Warning:Java Applet) in the frame=20
instead of the certificate-name.And this is=20
because Javaplugin doesn=B4t recognice that the=20
Applet is signed..why is that.

If you have the knowledge in this matter=20
I would apprediate to hear back from you as soon
as possible.

Thanks,

regards Per
per.bjornelf@eng.ericsson.se

> **************************************************************
> We have this certificate at Ericsson Data i Norrk=F6ping.=20
>=20
> This Certificate belongs to:
> www.ericsson.se
> Secure Application Development
> Ericsson Data Norrk=F6ping AB
> Norrk=F6ping, -, SE
>=20
> Serial Number: 11:F8
> This Certificate is valid from Tue Mar 10, 1998 to Wed Mar 10, 1999
> Certificate Fingerprint:
> 69:DA:29:78:4B:9F:08:C7:14:5B:DA:D1:B3:81:86:8B
>=20
> *********************************************************************