Re: JavaKey and Signed Applets using Plug-In 1.1.1

schemers@Eng
Wed, 16 Sep 1998 14:16:38 -0700 (PDT)

I'm not following (MAYBE ITS BECAUSE IT HARD TO READ SOMETHING TYPED
IN ALL CAPS). You aren't supposed to distribute identitydb.obj
files. You distribute certificates which can then be imported to any
existing identitydb.obj file using "javakey i".

We understand that it is still a pain to have to distribute
certificates though, and people have requested something similar
to Netscape's model with popup dialogs and whatnot, but that has its
own set of problems (some sites refuse to let users make such
decisions on their own). The security group is working with the
plug-in team and Netscape on these issues.

roland

Dalton-1, Michael writes:
> OK, we are ready to release our (Sun security model) JavaKey based signed
> applet using the Java Plug-in 1.1.1.
>
> HOW DO WE DISTRIBUTE THE REQUIRED IDENTITYDB.OBJ FILES THAT EACH USER MUST
> HAVE WITHOUT PISSING THEM OFF. AT THE PRESENT TIME WE KNOW OF NO DOCUMENTED
> WAY THAT THE NON-TECHNICAL END-USER CAN INSTALL OUR PUBLIC KEYS ON THEIR
> SYSTEM WITHOUT REMOVING OTHER PUBLIC KEYS FOR OTHER APPLETS THAT THEY MIGHT
> BE RUNNING.
>
> Please don't tell me this is fixed in JDK 1.2. We need a solution to deploy
> our JDK 1.1 applet today!
>
> If we don't have a solution within one month we will be forced to have to
> revert to Microsoft's solution.
>
> Michael Dalton
> NASA Kennedy Space Center
> Michael.Dalton@ksc.nasa.gov
>
>
>
> Michael Dalton
> DP / 407-861-2207 / Room LCC 1R37A
> Kennedy Space Center, FL 32899
> http://CLCSdev.ksc.nasa.gov
> Michael.Dalton@ksc.nasa.gov
>
> <<...>>
>
>