Hot questions for Using Applets in digital certificate

Top Java Programmings / Applets / digital certificate

Question:

I have a self signed applet running in our intranet. We want to achieve that the browser would not ask for any confirmation before allowing the applet ro run.

I tried to add our certificate to the java's cacerts file with no success.

keytool -alias myCACert -import -keystore C:\dev\jdk-8u51-windows-x64\jre\lib\security\cacerts -file myCACert.cer

Also adding the certs using java control panel doesn't work as well.

Am I missing something or it is not going to work at all?

Thank you.


Answer:

I have managed to get it working by removing chanined certificates and importing the certificate to the JRE's cacerts file.

Question:

I'm trying to validate a smart card. I read this tutorial, and everything is working. But I'm working in a big project, that will be used by a lot of companies, different smart cards and different OS.

My problem: There is a driver that supports all smart cards (A1 and A3) manafucturers? Because this example is using the manufacturer's driver in hardcode, with this line:

library = c:\windows\system32\pkcs201n.dll

There is a way to load a generic library, that support differents manufacturers and differents operating systems?


Answer:

Each hardware vendor provides their own PKCS#11 driver for their particular device. While PKCS11 is a generic interface, different implementations have different requirements in the set of object attributes and in other function parameters. So creation of universal drivers is not possible. Your software needs to ask the user for a path to the driver DLL.