Trail: Security Features in Java SE
Lesson: Exchanging Files
Section: Steps for the Contract Sender
Export the Public Key Certificate
« PreviousTOCNext »
Exchanging Files
Steps for the Contract Sender
Create a JAR File Containing the Contract
Generate Keys
Sign the JAR File
Export the Public Key Certificate
Steps for the Contract Receiver
Import the Certificate as a Trusted Certificate
Verify the JAR File Signature
You now have a signed JAR file sContract.jar. Recipients wanting to use this file will also want to authenticate your signature. To do this, they need the public key that corresponds to the private key you used to generate your signature. You supply your public key by sending them a copy of the certificate that contains your public key. Copy that certificate from the keystore stanstore to a file named StanSmith.cer via the following: 
keytool -export -keystore stanstore -alias signLegal -file StanSmith.cer
You will be prompted for the store password (balloon53).

Once they have that certificate and the signed JAR file, your recipient can use the jarsigner tool to authenticate your signature. See Steps for the Contract Receiver.

Previous page: Sign the JAR File
Next page: Steps for the Contract Receiver