Apple Developer Connection
Member Login Log In | Not a Member? Contact ADC

< Previous PageNext Page > Hide TOC

Java Security

Radar #3173179

Restrictions on cryptographic operations

Description:

It was necessary to install Sun's unlimited strength jurisdiction policy files if there was a need for cryptographically strong certificates or algorithms.

Resolution:

Sun's unlimited strength jurisdiction policy files are now pre-installed.

Radar #4115657

KeychainStore and private keys

Description:

KeychainStore could not read or write the Key portion of private keys stored in the user's keychain.

Resolution:

KeychainStore can read private keys and certificate chains that make up an identity from Keychain. Also, PKCS#12-formatted identities can be stored and retrieved from Keychain.

Radar #4185385

Certificate trust alert clarification

Description:

The certificate trust alert was unclear that running the signed code granted the issuing application or applet unlimited access to the user's machine.

Resolution:

The certificate trust alert has been reworded to emphasize the consequences of clicking Trust. If your documentation used a screen shot of this alert, you should update it.

Radar #4280141

Certificate trust alert ownership

Description:

When a signed applet is loaded, the certificate trust alert is presented as a modal dialog. If the window with the signed applet was in the background, the dialog was shown but no indication was made to associate the alert and its applet.

Resolution:

The applet's window is brought to the foreground before presenting the certificate trust dialog. Also, the alert's title is set to the URL of the page hosting the applet.

Radar #4404315

PKCS#11 support missing

Description:

J2SE 5.0 supports native PKCS#11-based smartcard libraries. The required Jar and native library were not included with previous releases of J2SE 5.0 for Mac OS X.

Resolution:

J2SE 5.0 Release 4 includes PKCS#11 support.

Radar #4422901

KeychainStore loses certificates

Description:

Multiple operations on KeychainStore left it in an inconsistent state where certificates added by the developer may have been lost.

Resolution:

J2SE 5.0 release 4 includes a more robust implementation of KeychainStore.

Radar #4078337

Certificates for SSL authentication

Description:

Previous versions of J2SE 5.0 on Mac OS X didn't look in Keychain for certificates or keys for sites that used SSL authentication.

Resolution:

In J2SE 5.0 Release 4, the KeychainStore implementation is used to find certificates and keys requested by a server for SSL authentication. You can also continue to use a Java keystore (found at ~/Library/Caches/Java/security/trusted.clientcerts), but Keychain is the preferred location to store certificates and keys.



< Previous PageNext Page > Hide TOC

Last updated: 2006-05-23

Did this document help you?
Yes: Tell us what works for you.

It’s good, but: Report typos, inaccuracies, and so forth.

It wasn’t helpful: Tell us what would have helped.
Get information on Apple products.
Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Copyright © 2007 Apple Inc.
All rights reserved. | Terms of use | Privacy Notice