Audience
Developers looking for a Code Signing solution that signs and verifies Java Archives
About jarsigner
The jarsigner tool has two purposes, to verify the signatures and integrity of signed JAR files and to sign Java Archive (JAR) files. A digital signature is a string of bits that is computed from some data (the data being signed) and the private key of an entity (a person, company, and so on). Similar to a handwritten signature, a digital signature has many useful characteristics, its authenticity can be verified by a computation that uses the public key corresponding to the private key used to generate the signature, it is a function of the data signed and thus cannot be claimed to be the signature for other data as well, the signed data cannot be changed. If the data is changed, then the signature cannot be verified as authentic and It cannot be forged, assuming the private key is kept secret.
SignTool
The software industry must provide users with the means to trust code including code published on the Internet. Many webpages contain only static information that can be downloaded with little risk. Some pages, however, contain controls and applications to be downloaded and run on a user's computer. These executable files can be risky to download and run. Packaged software uses branding and trusted sales outlets to assure users of its integrity, but these guarantees are not available when code is transmitted on the Internet. Additionally, the Internet itself cannot provide any guarantee about the identity of the software creator. Nor can it guarantee that any software downloaded was not altered after its creation. Browsers can exhibit a warning message that explains the possible dangers of downloading data of any kind, but browsers cannot verify that code is what it claims to be. A more active approach must be taken to make the Internet a reliable medium for distributing software.
Learn more
SignMyCode
SignMyCode is a one-stop shop for trusted and authentic code signing solutions, offering code signing certificates from reputed certificate authorities like Sectigo, Certera, DigiCert etc. suitable for individual developers and software organisations to safeguard their software, EXE, scripts, and apps by digitally signing them.
Learn more
Entrust TLS/SSL Certificates
Entrust TLS/SSL Certificates provide validated identity and encryption to secure your websites, users, and data. When your website is secured by an Entrust TLS/SSL Certificate, your visitors can be confident knowing that your organization's identity as been verified and that encryption will keep their data and transactions secure. With an Entrust TLS/SSL Certificate, your visitors never see browser alerts notifying them that your website is “not secure” or that their “connection is not private.” Invest in your reputation and great user experience with an Entrust TLS/SSL Certificate. Entrust is a founding member of the CA Security Council and the CA/Browser Forum, and actively contributes to develop industry standards for TLS/SSL, S/MIME, document signing, mobile device, and code signing certificates, as well as certificate management. Trust your security to a Certification Authority that defines digital security.
Learn more
CodeSign
Code signing is a proven security practice to protect and extend the trust-based usage of software systems and applications. Organizations that publish as well as consume software, need a secure code signing mechanism to ensure software authenticity. The objective is to ascertain that valid software is not taken over as a medium by ransomware. CodeSign by Aujas provides a scalable, secure, easy to integrate DevOps-ready platform that ensures the integrity of software applications, enables allow-listing to protect internal infrastructure, protects the signing keys, provides automated audit trails, and combat ransomware. CodeSign is available both as a SaaS application and as an on-premise appliance and easily scales to hundreds of millions of file signings per year. It allows unmatched versatility to sign all file types across all platforms. Organizations use variety of software applications which are essential for running day to day business.
Learn more
Integrations
No integrations listed.
Company Information
Oracle
Founded: 1977
United States
docs.oracle.com/javase/7/docs/technotes/tools/windows/jarsigner.html
Videos and Screen Captures
You Might Also Like
One request through our shipping app or API instantly shows rates from a massive network of traditional and on-demand carriers, allowing you to create cost-effective shipping labels at scale.
Product Details
Platforms Supported
SaaS
Training
Documentation
Support
Online