Page History

\[[API 2006|AA. Bibliography#API 06]\] 
\[[Gong 2003|AA. Bibliography#Gong 03]\] 12.8.3 jarsigner
\[[Eclipse 2008|AA. Bibliography#Eclipse 08]\] [JAR Signing|http://wiki.eclipse.org/JAR_Signing] and [Signed bundles and protecting against malicious code|http://help.eclipse.org/stable/index.jsp?topic=/org.eclipse.platform.doc.isv/guide]
\[[Halloway 2001|AA. Bibliography#Halloway 01]\] 
\[[Flanagan 2005|AA. Bibliography#Flanagan 05]\] Chapter 24. The java.util.jar Package
\[[Oaks 2001|AA. Bibliography#Oaks 01]\] Chapter 12: Digital Signatures, Signed Classes
\[[Tutorials 2008|AA. Bibliography#Tutorials 08]\] [The JarRunner Class|http://java.sun.com/docs/books/tutorial/deployment/jar/jarrunner.html], [Lesson: API and Tools Use for Secure Code and File Exchanges|http://java.sun.com/docs/books/tutorial/security/sigcert/index.html] and [Verifying Signed JAR Files|http://java.sun.com/docs/books/tutorial/deployment/jar/verify.html]
\[[JarSpec 2008|AA. Bibliography#JarSpec 08]\] Signature Validation 
\[[Bea 2008|AA. Bibliography#Bea 08]\] 
\[[Muchow 2001|AA. Bibliography#Muchow 01]\] 
\[[MITRE 2009|AA. Bibliography#MITRE 09]\] [CWE ID 300|http://cwe.mitre.org/data/definitions/300.html] "Channel Accessible by Non-Endpoint (aka 'Man-in-the-Middle')", [CWE ID 319|http://cwe.mitre.org/data/definitions/319.html] "Cleartext Transmission of Sensitive Information", [CWE ID 494|http://cwe.mitre.org/data/definitions/494.html] "Download of Code Without Integrity Check", [CWE ID 347|http://cwe.mitre.org/data/definitions/347.html] "Improperly Verified Signature"