Home 
Loading...Everything you need to know about Java code signing certificate: Features, prices, brands, warranties and functionalities
A Java code signing certificate is useful for securing all types of Java software and executables. It gives assurance to users that the identity of the software publisher has been rigorously vetted by a publicly trusted certificate authority (CA). It also ensures that the software can’t get tampered with or corrupted without getting detected.
There are two main functions of the Java code signing certificate: 1) Signer authenticity 2) Integrity
Signer Authenticity
When the users attempt to download your Java software, the operating system pops up a security dialogue box. If you signed your code with Java code signing certificate, the security window will display your company’s name as “verified publisher.” Using a Java code signing certificate prevents the display of “Unknown Publisher” or “unsigned” warnings. This gives your users assurance that the code really came from you.
Before issuing a Java code signing certificate to any company, the issuing CA performs organization validation (OV) to verify whether the company is legally registered, has a valid physical address, and a telephone number. This process, which typically takes one to three business days, can be completed by the CA checking online directories or government databases.
Integrity
When you put a digital signature on your code, the Java code signing certificate hashes the entire code and the digital signature. It’s like putting adigital shrink wrap around your code to protect it. The intact digital signature is proof that the software is unaltered and is in the same condition it was when the publisher signed it. This will instantly boost customers’ confidence while downloading the software.
7 Benefits of Using Java Code Signing Certificates
Using a java code signing certificate provides the following benefits:
- Hashes the digital signatures and code to maintain the executable’s integrity.
- Provides the users guarantee that the software really comes from the publisher who signed it.
- Boosts customer trust and verifies that software is safe to download.
- Improves software downloads rates.
- Prevents the display of “Publisher: Unknown” or “unsigned” warnings in the security dialogue box.
- Ensures that software cannot be altered without getting noticed.
- Improves the brand/organization’s reputation.
Java Code Signing Certificates Comparison
| Thawte | Symantec | |
| Price One year Two Years Three Years | $149/year (Save 50%) $130/year (Save 50%) $124.17/year (Save 50%) | $429/year (Save 14%) $375.38/year (Save 14%) $357.50/year (Save 14%) |
| Supports Sun Java Signing | Yes | Yes |
| Supports Microsoft Authenticode | Yes | No |
| Supports VBA and Office | Yes | No |
| Supports Adobe Air | Yes | No |
| Supports Macromedia Shockwave | Yes | No |
| Warranty | $50,000 | $125,000 |
| Time Stamping Available | Yes | Yes |
| Major Browsers: Chrome, Firefox Microsoft Edge, Internet Explorer, Opera, Safari | Yes | Yes |
| Control Panels: cPanel, Ensim, Citrix, DotNet Panel, Plesk, Hsphere, Helm, etc. | Yes | Yes |
| Web Servers: Apache, Microsoft IIS, IBM HTTP, Tomcat, Weblogic, Cobalt, etc. | Yes | Yes |
| Email Servers: Lotus, Mail (Mac OS X & iOS), Exchange 2016, 2013 2010, 2007, Thunderbird, etc. | Yes | Yes |
| Client OS: Mac OS X, iOS, Android, Ubuntu, Windows Mobile, Chrome OS, Windows (all versions), etc. | Yes | Yes |
| Server OS: Linux, Windows Server (all versions), NGINX, UNIX, Solaris, Novell, Palm OS, etc. | Yes | Yes |
| Proxy Server, Routers & Firewalls: Microsoft ISA (all versions), CISCO, F5 Big-IP, Juniper, etc. | Yes | Yes |
| Shop Now | Shop Now |
Note: One Symantec code signing certificate will cover only one platform. If you’re using it to sign Java, it will not allow you to sign any other platforms. You need to buy a separate code signing certificate to sign software on other platforms.
Sign Java .jar Files with Jarsigner Command Tool in 2 Easy Steps
Step 1: Run the following command at the command prompt:
jarsigner -tsa http://timestamp.digicert.com -keystore c:\path\to\your\keystore.jks -storepass YourPassword c:\path\to\your\file.jar YourAlias
Note:
- Replace YourPassword with your keystore password.
- Replace YourAlias with the alias assigned at the time of generating CSR.
Step 2: To verify that your code was successfully signed, run this command in command prompt:
jarsigner -verify -verbose -certs c:\path\to\your\file.jar
When you see an output that includes the info below, it indicates that the code was successfully signed:
s = signature was verified
Secure Your Software with DigiCert Code Signing
Add digital code signing security on your software with world’s trusted code signing certificate.