Discussions
Categories
- 197K All Categories
- 2.5K Data
- 546 Big Data Appliance
- 1.9K Data Science
- 450.8K Databases
- 221.9K General Database Discussions
- 3.8K Java and JavaScript in the Database
- 31 Multilingual Engine
- 552 MySQL Community Space
- 479 NoSQL Database
- 7.9K Oracle Database Express Edition (XE)
- 3.1K ORDS, SODA & JSON in the Database
- 556 SQLcl
- 4K SQL Developer Data Modeler
- 187.2K SQL & PL/SQL
- 21.4K SQL Developer
- 296.3K Development
- 17 Developer Projects
- 139 Programming Languages
- 293K Development Tools
- 110 DevOps
- 3.1K QA/Testing
- 646.1K Java
- 28 Java Learning Subscription
- 37K Database Connectivity
- 158 Java Community Process
- 105 Java 25
- 22.1K Java APIs
- 138.2K Java Development Tools
- 165.3K Java EE (Java Enterprise Edition)
- 19 Java Essentials
- 162 Java 8 Questions
- 86K Java Programming
- 81 Java Puzzle Ball
- 65.1K New To Java
- 1.7K Training / Learning / Certification
- 13.8K Java HotSpot Virtual Machine
- 94.3K Java SE
- 13.8K Java Security
- 205 Java User Groups
- 24 JavaScript - Nashorn
- Programs
- 468 LiveLabs
- 39 Workshops
- 10.2K Software
- 6.7K Berkeley DB Family
- 3.5K JHeadstart
- 5.7K Other Languages
- 2.3K Chinese
- 175 Deutsche Oracle Community
- 1.1K Español
- 1.9K Japanese
- 233 Portuguese
JCE Provider and Expiring Signing Certificate
Good day everyone.
Long story short, some time ago we implemented a JCE provider, signed it using a code signing certificate from Sun, and distributed it with one of our products. That certificate will expire in the not too distant future. We are going through the process of acquiring a new code signing certificate, and I have no real concerns or questions about that. I do, however, have a question regarding what might happen to some of our installations if we are unable to update the JAR before the certificate expires.
I believe, based on some documentation that I have found (link below), that the application will continue to function just fine. According to the documentation, as of JCE 1.2.2, the implementation will accept expired (but correctly signed) JAR files and not complain.
Java Archive Downloads - Java Platform Technologies
I have tested this locally by setting my workstations clock to a future date beyond the expiration of our current code signing certificate. The test showed no degradation in function, but I can't say I really tested everything.
I was wondering if anyone had some more definitive knowledge of what will happen to an application attempting to use a JCE Provider contained in a JAR that has been signed with an expired code signing certificate. A link to a bit more recent documentation, perhaps? I'd even take a few anecdotes as supporting evidence.
Thanks,
-Ben