May 2001
Intermediate to advanced
618 pages
20h 50m
English
Content preview from Java Security, 2nd EditionBecome an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Comparison with Previous Releases
There are few changes to the
Signature
class itself between Java 1.1 and Java 2.
In Java 1.1, there is no
SignatureSpi
class and the
Signature class extends the
Object class instead; the
setParameter( )
method that requires an algorithm
parameter spec does not exist in 1.1. In 1.1 and Java 2, version 1.2,
the default security provider supports only
DSA signatures; to get RSA
signatures you must either install a third-party security provider or
upgrade to 1.3. The
SignedObject
class is only available in Java 2.
There are significant changes to the way in which
signed classes are handled between Java
1.1. and Java 2. In Java 1.1, there is no
jarsigner
tool; the equivalent tool is called
javakey
,
and it creates signatures using the 1.1 identity scope (rather than a
keystore). We will discuss this in Appendix C.
Since Java 1.1 does not have code sources, reading a signed
jar file is also different. In fact, since
the
java.util.jar
package does not exist in that release,
the classes required to read a standard
PKCS7
signature block are unavailable to us. More important, the
security manager
must handle signed classes differently: the class loader we presented here must be
modified to associate the
certificates with the class using the
setSigners( )
method of the
Class class, and the security manager must
retrieve those certificates with the getSigners( )
method. In general, the security manager and the class loader must be more tightly-coupled ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.