Digital Signatures of JAR Files

Q

What are digital signatures of JAR files? And where are they stored in the JAR file?

✍: FYIcenter.com

A

Digital signatures are encrypted digests of entries archieved in the JAR file. Digital signature information is stored in multiple files under the META-INF path name:

META-INF/MANIFEST.MF - Contains digests of JAR entries.
META-INF/*.SF - Signature file with digests of JAR entries. Generated by a specific signar.
META-INF/*.DSA - Signature file encrypted with the DSA (PKCS7 signature, DSA) algorithm. Generated by a specific signar.
META-INF/*.RSA - Signature file encrypted with the RSA (PKCS7 signature, SHA-256 + RSA) algorithm. Generated by a specific signar.
META-INF/SIG-* - Signature file encrypted with other algorithm. Generated by a specific signar.

Here is a sample of a *.SF file, SUN_MICR.SF:

Signature-Version: 1.0
SHA1-Digest-Manifest: WJfLq1ILjj2Pn43Eo0FBNVFuG9U=
Created-By: 1.3.1_04 (Sun Microsystems Inc.)

Name: javax/activation/MimeTypeParseException.class
SHA1-Digest: UAKWG9VD0+5i0GHxkNysu84wuGQ=

Name: javax/activation/CommandInfo.class
SHA1-Digest: VDih63m/ZVUpovKCWSyMwn4nGV4=

...

The "jarsigner" tool in the JDK can be used to sign file files.

Back to FAQ on JAR (Java ARchive) File Format.

2016-04-15, 1840👍, 0💬

What Is jms-1_1-fr-apidocs.zip
What Is jms-1_1-fr-apidocs.zip? I downloaded it from the JMS (Java Message Service) page. jms-1_1-fr-apidocs.zip is the package of Sun implementation version 1.1 of JMS (Java Message Service) 1.1 specification. It contains the jms.jar file compiled for JDK 1.1. Download File Size and Download Locati... 2016-04-04, 2050👍, 0💬

JAR File Index Specification
What is the JAR file index specification? What tools can I use to generate the index file? The index file of a JAR file contains directory information as to which classes and resources reside in the JAR file. The index file is stored as META-INF/INDEX.LIST in the JAR file. The index file specificati... 2016-04-12, 1959👍, 0💬

Tools to Generate and Manage JAR Files
What tools can I use to generate and manage JAR files? There are a number tools you can use to generate and manage JAR files: 1. JDK "jar" Tool - The "jar" tool from the JDK package is probably the best tool to generate and manage JAR files. It offers many features like creating a new JAR file, upda... 2016-04-12, 1930👍, 0💬

JAR (Java ARchive) File Format Specification
What Is Specifiction of JAR (Java ARchive) File Format? JAR (Java ARchive) is a platform-independent file format that aggregates many files into one file. The specification of JAR file format is divided into several areas: 1. JAR Internal Archive Structure - When files and folders are archived into ... 2016-04-23, 1928👍, 0💬

Download and Install jms-1_1-fr-apidocs.zip
How to download and install jms-1_1-fr-apidocs.zip? I want to use the jms.jar file to support Java Message Service. If you want to use jms.jar which is the Sun implementation of JMS (Java Message Service) 1.1, you can follow these steps to download and install jms-1_1-fr-apidocs.zip: 1. Go to the JM... 2016-04-06, 1919👍, 0💬

Main Attributes of JAR Manifest File
What are main attributes of a JAR manifest file? Main attributes of a JAR manifest file are attributes given in the first section to provide overall information of the JAR file. Main attributes fall into the following different groups: 1. General Main Attributes: Manifest-Version: Defines the manife... 2016-04-21, 1889👍, 0💬

What Is JAR (Java ARchive) File Format
What Is JAR (Java ARchive) File Format? JAR (Java ARchive) is a platform-independent file format that aggregates many files into one file. Originally, JAR file format is designed to bundle multiple Java applets and their requisite components (.class files, images and sounds) into a single file, whic... 2016-04-23, 1854👍, 0💬

Digital Signatures of JAR Files
What are digital signatures of JAR files? And where are they stored in the JAR file? Digital signatures are encrypted digests of entries archieved in the JAR file. Digital signature information is stored in multiple files under the META-INF path name: META-INF/MANIFEST.MF - Contains digests of JAR e... 2016-04-15, 1841👍, 0💬

JAR Manifest File Format Specification
What Is Specifiction of a JAR manifest file? If a manifest file is provided in a JAR file, it must meet the following specifications: 1. The manifest file must be locaed at META-INF/MANIFEST.MF in the JAR file. 2. The content of a manifest file can be divided into sections separated by empty lines. ... 2016-04-21, 1799👍, 0💬

All rights in the contents of this web site are reserved by the individual author. FYIcenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.