Beginning with the April 2013 Java release, customers are encouraged to begin signing applet jars files with signed with trusted certificates from a trusted certificate authority*. Self-signed and unsigned jars will result in additional dialogs and/or clicks in order to launch the application. Customers are encouraged to obtain trusted certificates for any client jar files used in their applications.
*Note that for the discussion in this note, a trusted certificate authority is one whose public key portion of the certificate is contained in the JRE certificate store. These can be seen in the JRE Java Control Panel as depicted in the following image:
At a minimum, jars should be self-signed although using a trusted authority is recommended and encouraged.
These changes will be included in the April 2013 Critical Patch Update (CPU) release.
Questions and Answers
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!