Documentation

User Guides

Java SE 6 Security Documentation

Extensive information on the security features of the Java SE 6 release, including reference guides, API specifications (javadocs), tool documentation, and tutorials.

Java 2 SDK, v 5.0 Security Documentation

Extensive information on the security features of the Java 2 SDK, v 5.0 release, including reference guides, API specifications (javadocs), tool documentation, and tutorials.

Java 2 SDK, v 1.4 Security Documentation

Extensive information on the security features of the Java 2 SDK, v 1.4 release, including reference guides, API specifications (javadocs), tool documentation, and tutorials.

Security Code Guidelines

Some guidelines to allow you to take full advantage of the security provided by the Java platform.

JAR Guide

A short introduction to using the JAR tool to create JAR files. This describes the applet tag syntax for associating an applet with a .JAR file, instead of a .class file.

JAR File Specification

JAR file is a file format based on the popular ZIP file format and is used for aggregating many files into one.

Deploying signed applets in Java Plug-in

A pointer to the Java Plug-in developer guide. The guide includes a chapter on security and the signed applet support in Java Plug-in, which allows users to grant (signed) applets all permissions based on their authenticated signers, without having to configure and deploy any policy or keystore configuration files.

Security Tool Documentation

keytool: Solaris/Linux and Microsoft Windows: keytool is a utility for creating and managing keystores and certificates.
jarsigner: Solaris/Linux and Microsoft Windows: jarsigner is a utility for generating and verifying JAR signatures.
Policy Tool: Solaris/Linux and Microsoft Windows: Policy tool is a GUI tool for creating and managing policy files.
kinit: Microsoft Windows: kinit is a utility for obtaining Kerberos v5 tickets.
klist: Microsoft Windows: klist is a utility to list entries in a Kerberos v5 credential cache and key tab.
ktab: Microsoft Windows: ktab is a utility to help the user manage entries in the key table

Java Security Feedback Alias

Information about the java-security@sun.com alias, and an online archive of the questions, comments, and answers from the alias.

Including Certificate Authority Root Certificates in Java SE

If you are a Certificate Authority and are interested in including your root certificates in Java SE, please send an email to Java SE-CA-Request with the following in the subject line:

Subject: JAVASEC - Including CA Root Certificates

Please provide the following information in your email:

Company name and address
Company web page address (URL)
Technical and business contact (first and last name, e-mail address, and phone number)
Root certificates that you would like to submit (in PEM or DER-encoded format) and their usage, e.g. code signing and SSL
Revocation support , e.g. CRL and OCSP
Pointer to Certification Practices Statement (URL)
WebTrust Certification or equivalent audit report
How root certificates provide value to Java SE users

	Java SDKs and Tools
Java SE Java EE and Glassfish Java ME JavaFX Java Card NetBeans IDE

	Java Resources
New to Java? APIs Code Samples & Apps Developer Training Documentation Java.com Java.net Student Developers Tutorials

E-mail this page

Printer View

Documentation

Hardware and Software, Engineered to Work Together