We have a Java application that uses RxTx to update the firmware of our game console. To avoid security warnings when launching a Java application on our website through WebStart, we bought a trusted certificate and signed the application with this. All checks show that it is successfully signed, and if I run the application through Safari on my Mac (OS X 10.6.8) with Java 1.6.0_41, it starts without any complaints.
But if I launched it using IE9 on a machine running Windows 8, I get a warning: βDo you want to run this application? This application will work with unlimited access, which could compromise your computer and personal information. Only if you trust the publisher "This application digital signature has expired. Additional Information."
If I click "Additional Information", I get "This application will work with unlimited access to your personal files and other means (webcam, microphone) on your computer.
Although the application is digitally signed, the file associated with the application (JNLP) does not have one. A digital signature ensures that the file belongs to the provider and that it has not been modified.
The digital signature was created with a trusted certificate. "I tried to find a solution, how not to get this message, and to think what I need to do is sign the JNLP file (that is, copy it to the bank, as indicated here ), but I can not find how to get NetBeans to do this! I Iβm using NetBeans 6.9.1 Does anyone know how to do this, and if this is enough to sign JNLP?
To make sure the file was properly signed, I did the following:
jarsigner -verify -certs -verbose OribooDesktopClient.jar 6396 Thu Feb 28 17:14:14 CET 2013 META-INF/MANIFEST.MF 6354 Thu Feb 28 17:14:14 CET 2013 META-INF/MOVINTOF.SF 1843 Thu Feb 28 17:14:14 CET 2013 META-INF/MOVINTOF.RSA 0 Thu Feb 28 17:07:28 CET 2013 META-INF/ 0 Thu Feb 28 17:07:26 CET 2013 oribooDesktopClient/ 0 Thu Feb 28 17:07:26 CET 2013 oribooDesktopClient/resources/ 0 Thu Feb 28 17:07:26 CET 2013 oribooDesktopClient/resources/busyicons/ sm 3912 Thu Feb 28 17:07:26 CET 2013 oribooDesktopClient/BBDatabase.class X.509, CN=Movinto fun AB, O=Movinto fun AB, STREET=?rev?gen 138, L=?re, ST=J?mtland, OID.2.5.4.17=83013, C=SE [certificate is valid from 2/28/13 1:00 AM to 3/1/14 12:59 AM] sm 2497 Thu Feb 28 17:07:26 CET 2013 oribooDesktopClient/Binary.class X.509, CN=Movinto fun AB, O=Movinto fun AB, STREET=?rev?gen 138, L=?re, ST=J?mtland, OID.2.5.4.17=83013, C=SE [certificate is valid from 2/28/13 1:00 AM to 3/1/14 12:59 AM] ....