This week's book giveaway is in the OCMJEA forum. We're giving away four copies of OCM Java EE 6 Enterprise Architect Exam Guide and have Paul Allen & Joseph Bambara on-line! See this thread for details.
I want to convert my Applet to SSL. I have used SSL (with a full program, not an Applet). It is currently signed and works fine. What will I have to do extra for SSL to work for the Applet? I am NOT talking about the coding part. That is already taken care of. Will the signing of the JAR file be enough to work for the SSL? For example,
Current : JAR signed, No SSL
Wanted : JAR signed, SSL
What would I have to do to convert between current and wanted? Please note that the answer my be "nothing". I am just trying to figure it out. Also, I have limited experience with SSL, but I'm not stupid.
“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.” (Mosher's Law of Software Engineering)
“If debugging is the process of removing bugs, then programming must be the process of putting them in.” (Edsger Dijkstra)
Let's put it this way... I wrote an applet and signed it with a certificate which we purchased from one of the well-known organizations (hint... its name starts with V...).
Then I put it into a page of our web application, which was accessed via SSL using a (different) certificate which we purchased from that same well-known organization. And what happened? Instead of our users being asked nicely if they want to accept the applet which was signed with the well-known organization's certificate, they get harsh messages that the applet has a malformed certificate chain. (Or something like that, it was a while ago that this happened.)
So we switched to not using SSL for that page and then the signed applet worked just fine. In answer to your question about whether anybody understands SSL, then, I'm tempted to suggest the answer is "No".
I avoided all that certificate "crap" by setting the suite directly. I still sign and self-certify the Applet. So far, the only thing that pops up is a "Run" dialog I think. But that dialog is for the keystore/signed part of the Applet. SSL itself isn't the problem for me. Thank you for sharing your experiences and your honest assumption. Where can I find out more about SSL (in Java, not generally)? For example, is there a Java SSL forum?