<分区>
自从最新的 Java 更新以来,我的两个小程序向我们的用户显示警告弹出窗口,即使我们使用的两个 jar
文件都已签名。我已经使用 jarsigner -verify MyJarFile.jar
命令验证了它们的签名。下面是我们看到的弹出消息...
我的小程序通过 JNI 调用 C++ dll。 C++ dll 调用 C# 网络模块。
有谁知道我可以做些什么来让这个弹出窗口消失?它说应用程序包含签名和未签名的代码,但我正在对我的 jar 文件中的每个 java 文件(只有 1 个)进行签名。我需要做更高级别的签名吗?
编辑:这是在最新的 Java 更新时发生的。请参阅以下摘自 this page 的引述.
Authors and vendors of applications deployed using either Java applets or Java Web Start technology – applications distributed to end users at runtime via the web browser or network - should sign their code using a trusted certificate for the best user experience. Specifically, all Java code executed within the client’s browser will prompt the user. The type of dialog messages presented depends upon risk factors like, code signed or unsigned, code requesting elevate privileges, JRE is above or below the security baseline, etc. Low risk scenarios present a very minimal dialog and include a checkbox to not display similar dialogs by the same vendor in the future. Higher risk scenarios, such as running unsigned jars, will require more user interaction given the increased risk.