Code signing [Was: JEP draft: Prepare to Restrict The Use of JNI]
Andrew Haley
aph-open at littlepinkcloud.com
Thu Sep 7 12:42:46 UTC 2023
On 9/6/23 20:01, Attila Kelemen wrote:
> However, why would we need a signature for this?
Why not? It's a simple mechanism, anyone can do it, and anyone can add
trusted libraries to their blessed list. All that crypto-signing does is
add another layer of robustness.
--
Andrew Haley (he/him)
Java Platform Lead Engineer
Red Hat UK Ltd. <https://www.redhat.com>
https://keybase.io/andrewhaley
EAC8 43EB D3EF DB98 CC77 2FAD A5CD 6035 332F A671
More information about the jdk-dev
mailing list