Discussions
Categories
- 382.6K All Categories
- 2.1K Data
- 213 Big Data Appliance
- 1.9K Data Science
- 448.4K Databases
- 221.1K General Database Discussions
- 3.7K Java and JavaScript in the Database
- 25 Multilingual Engine
- 541 MySQL Community Space
- 469 NoSQL Database
- 7.8K Oracle Database Express Edition (XE)
- 2.9K ORDS, SODA & JSON in the Database
- 500 SQLcl
- 3.9K SQL Developer Data Modeler
- 186.3K SQL & PL/SQL
- 21.1K SQL Developer
- 293.8K Development
- 9 Developer Projects
- 130 Programming Languages
- 290.6K Development Tools
- 96 DevOps
- 3K QA/Testing
- 645.6K Java
- 24 Java Learning Subscription
- 36.9K Database Connectivity
- 151 Java Community Process
- 104 Java 25
- 22.1K Java APIs
- 137.9K Java Development Tools
- 165.3K Java EE (Java Enterprise Edition)
- 17 Java Essentials
- 146 Java 8 Questions
- 85.9K Java Programming
- 79 Java Puzzle Ball
- 65.1K New To Java
- 1.7K Training / Learning / Certification
- 13.8K Java HotSpot Virtual Machine
- 94.2K Java SE
- 13.8K Java Security
- 200 Java User Groups
- 24 JavaScript - Nashorn
- Programs
- 294 LiveLabs
- 36 Workshops
- 10.2K Software
- 6.7K Berkeley DB Family
- 3.5K JHeadstart
- 5.8K Other Languages
- 2.3K Chinese
- 168 Deutsche Oracle Community
- 1.2K Español
- 1.9K Japanese
- 234 Portuguese
Dubts about Oracle Forms jars with caducated certificates
Hi,
I have some jars of oracle forms in a server with the certificates caducated. When I start the application throught URL on browser or using frmsal, no warnings and no errors appear and all work fine. The certificate is expired but the timestamp not. I've read a lot about signning the jars but I don't undertand why seem tha they can work fine with expired certificated. Could you please show me the truth about it
Thank's a lot!
Answers
-
If you have signed the JAR with a valid certificate (write process),
this JAR remains validly signed within the valid timestamp interval (read process).
-
Ok, but I don't understand why the browser admit a file with certificate expired. Is thi normal?
-
To expand on this. Assuming the use of "timestamp", the certificate used to insert a digital signature into a JAR has an expiration. The digital signature created by that certificate does not expire once it has been created (generally speaking). There is an expiration for "timestamped" signatures, but that time is usually very far into the future and not of concern.
Think of it as a pen and paper. When you sign your name on paper, your signature is valid through the life of that paper. However, the pen you used to create that signature has an expiration (ink dries up). Just because the ink is no longer good in the pen does not change the fact that the paper already has your signature on it.
This is a gross oversimplification of how it works, but should help make the process more clear.
Michael Ferrante
Senior Principal Product Manager
Oracle
Twitter: @OracleFormsPM
