Trail: Security Features in Java SE
Lesson: Signing Code and Granting It Permissions
Section: Steps for the Code Signer
Export the Public Key Certificate
Home Page > Security Features in Java SE > Signing Code and Granting It Permissions

Export the Public Key Certificate

You now have a signed JAR file sCount.jar. The runtime system of the code receiver (Ray) will need to authenticate the signature when the Count application in the signed JAR file tries to read a file and a policy file grants that permission to this signed code.

In order for the runtime system to authenticate the signature, Ray's keystore needs to have the public key corresponding to the private key used to generate the signature. You supply this by sending Ray a copy of the certificate authenticating the public key. Copy that certificate from the keystore examplestore to a file named Example.cer via the following:

keytool -export -keystore examplestore -alias signFiles -file Example.cer

You will be prompted for the store password.


Problems with the examples? Try Compiling and Running the Examples: FAQs.
Complaints? Compliments? Suggestions? Give us your feedback.

Previous page: Sign the JAR File
Next page: Steps for the Code Receiver