JAR Files

• Signed objects are packaged in a JAR (Java Archive) file, a sort of “digital envelope” based on the ZIP archive format

• Using signtool, one associates digital signatures with the files in a JAR, which:

  • confirm the identity of the entity whose digital signature is associated with the JAR
  • check whether the files have been tampered with since being signed

Previous slide

Next slide

Back to first slide

View graphic version