Home > Archive > Java Security > June 2004 > problem to sign an applet
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
problem to sign an applet
|
|
|
| Hi everybody, first of all sorry for my poor english
I want to sign an applet for Internet Explorer with J2SDK1.4.2.
The problem is that I have got a certificate and its private key (one
in each file) to sign the applet, but I have not the keystore that
created that private key. I think the idea is import the private key
and the certificate in a keystore. żis this correct?
If that is solution. How can I do that? I know keytool cannot import
private keys.
Thanks in advance
| |
| Roedy Green 2004-06-03, 7:30 pm |
| On 3 Jun 2004 10:55:26 -0700, felgarom@hotmail.com (felix) wrote or
quoted :
>The problem is that I have got a certificate and its private key (one
>in each file) to sign the applet, but I have not the keystore that
>created that private key. I think the idea is import the private key
>and the certificate in a keystore. żis this correct?
If you just have the cert, but not the keystore that originally
generated it you have only the public part, not the private part. The
ca signed only the public part. You never gave them your private
part.
In other words, you are SOL. You have to start over and be more
careful to keep backups of the .keystore.
--
Canadian Mind Products, Roedy Green.
Coaching, problem solving, economical contract programming.
See http://mindprod.com/jgloss/jgloss.html for The Java Glossary.
| |
|
| What I have got is a file where the certificate is and another file
(with extension pvk) where the private key is, because I had to sign
applets with Microsoft JVM (so I have another .spc file). But now I
need to sign applets SUN JVM. That's the reason cause I have not the
keystore. Any possibility to sign applets with SUN JVM using these
files?
Regards
Roedy Green <look-on@mindprod.com.invalid> wrote in message news:<sksub0hpr5mlqq9hqelulramldjmqcr3kf@4ax.com>...
> On 3 Jun 2004 10:55:26 -0700, felgarom@hotmail.com (felix) wrote or
> quoted :
>
>
> If you just have the cert, but not the keystore that originally
> generated it you have only the public part, not the private part. The
> ca signed only the public part. You never gave them your private
> part.
>
> In other words, you are SOL. You have to start over and be more
> careful to keep backups of the .keystore.
| |
| Roedy Green 2004-06-03, 8:56 pm |
| On 3 Jun 2004 15:15:42 -0700, felgarom@hotmail.com (felix) wrote or
quoted :
>What I have got is a file where the certificate is and another file
>(with extension pvk) where the private key is, because I had to sign
>applets with Microsoft JVM (so I have another .spc file). But now I
>need to sign applets SUN JVM. That's the reason cause I have not the
>keystore. Any possibility to sign applets with SUN JVM using these
>files?
see http://mindprod.com/jgloss/keystore.html
follow the link to Mitch Gallant's solution.
--
Canadian Mind Products, Roedy Green.
Coaching, problem solving, economical contract programming.
See http://mindprod.com/jgloss/jgloss.html for The Java Glossary.
|
|
|
|
|