Thawte : Java Glossary

go to home page T words local find full screen, hide local find menu Google search web for more information on this topic jump to foot of page translate this page with Babelfish by Roedy Green ©1996-2009 Canadian Mind Products
index page for letter ⇒ punctuation 0-9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z (all)
Thawte
Thawte is a company that issues digital certificates. It sells several types including web server, Netscape Java application code signing and Internet Explorer Java application code signing. It sometimes takes months to jump through all the hoops to get one. I suggest you start the process early in your development cycle if you will need any certificates. Thawte is based in South Africa. I found it exceedingly reluctant to answer phone calls or email. Their certificates are cheaper than Verisign’s. Unfortunately Verisign bought them out in 2000-02, so this state of affairs won’t last long.

Initially each type of certificate had different properties aimed at the different browsers — MS Authenticode with Authenticode x509 extensions aimed at IE applications, Netscape Object Signing with Netscape specific extensions for Java meant to run with the Netscape/JDK 1.1x plugin, and Java 2 certs aimed at the Java 2 plugin (JDK 1.3 signing tools).

If you buy a Thawte Microsoft Authenticode X.509 certificate, you can turn it into a Netscape Jar signing certificate, or a Sun Jar signing certificate by a process described in Mitch Gallant’s essay.

Java 2 certs are based on the DSA crypto algorithm and are thus not compatible with Netscape and MS codesigning tools. A Java 2 cert used in conjunction with the tools provided by JDK 1.3 will enable you to sign code.

For Java 2 / Plugin 1.2 you’d need the Java 2 certs and JDK 1.3. JDK 1.2.x does not support Thawte cert chains — the top level DSA CA root is signed by Thawte top level RSA root and JDK 1.2.x cannot verify the signature.

The Thawte Root code signing certificate was inadvertently omitted from JDK 1.5 beta. You can download a copy and install it in your cacerts. See updating root certificates for details.

certificate
digital signature
keytool.exe
Verisign
CMP homejump to top
CMP logo		 feedback Please email your feedback for publication, errors, omissions, broken/redirected link reports
and suggestions to improve this page to Roedy Green : feedback email
made with CSS
HTML Checked!
ICRA ratings logo
mindprod.com IP:[65.110.21.43]
Your face IP:[38.103.63.62] Spread the Net
You are visitor number 9,097.
You can get a fresh copy of this page from: or possibly from your local J: drive (Java virtual drive/mindprod.com website mirror)
http://mindprod.com/jgloss/thawte.html J:\mindprod\jgloss\thawte.html