Blog of the Bittorrent Applet

Sunday, September 2, 2007

The point about certificates and signing

If you ever tried to use BitLet, you should have encountered a window that says you that the signature of the applet cannot be verified (see the screenshot below).

Since some users appear to be quite puzzled about what is the exact meaning of that message, we will try to shed some light on this issue.

Let's start from the beginning...
In order to protect users from malicious applets, the JVM (Java Virtual Machine) considers the code of applets that are embedded in web pages to be untrusted, and it is executed in a sort of sandbox, which prevents it from executing any action that could (possibly) harm the client system.

This means that, by default, common Java applets are not allowed to perform some tasks, including opening network connections to other servers or to access the filesystem of the client machine on which they are running.

Obviously, any bittorrent client (including BitLet) needs to perform both those operations to be of some use, even without intending to do any harm.

In order to overcome this problem, the applet is digitally signed, i.e. it is signed using a digital certificate that ensures that the applet comes from the certificate holder.

This brings us back to the first line of this post. You are seeing that annoying message because the certificate used to sign BitLet is not issued by a trusted Certificate Authority. Actually, it was generated on a common development box. Why?

Because code signing certificates cost. And they cost a lot of money, too.

If you know any CA that issues that kind of certificates without charging outrageously high prices, don't hesitate to let us know or drop us a line in the comments.


Blogger xXx said...

WOW!! Ilke this Site :D

Is there any way i can save the files in my server. Like i will put the ftp url/user name, password and it will start saving it in my ftp server?


September 12, 2007 at 5:47 PM  
Blogger Daniele said...

Hello xxx, I think that what you're looking for is quite different from bitlet. Take a look here, it could be a more suitable option for your needs.

September 12, 2007 at 7:54 PM  
Blogger ICeman said...

Maybe CACert works, i was trying to find how to request a free certificate for software (i use it for e-mail), i remember that option was on the site. Anyway, CACert is not in the default trusted roots for the official Java Virtual Machine, so the message of untrusted source will still appears.
Maybe looking in the "Security" tab of the Java applet in the Windows control panel (or the binary ControlPanel on /usr/java/ in Linux) there's a list of the default trusted roots for Signing Certificates. I hope one of them have to be free.

October 3, 2007 at 11:45 PM  
Anonymous Anonymous said...

I accidently press No to accepting the certificate. How can I get the certificate now as can't seem to get the message anymore.

Please help.

October 10, 2007 at 10:48 AM  
Blogger rhyd said...

thawte have certificates for applets which are free, and are widely used.

instructions here:

(instructions are for webstart but a signed jar using the same procedure will work as a signed applet)

you should consider providing a webstart client as well - would be useful for longer lived torrents.

December 20, 2007 at 6:18 AM  
Blogger Daniele said...

Thank you very much rhyd for your advice.

As you can see, we updated the certificate and now we are using the thawte one.

The webstart client would be a great option.
We already considered that, and we hope we'll find time to develop it in the future.



January 2, 2008 at 9:10 PM  
Blogger norbertojr1 said...

Seria muito bom também que pudessemos baixar torrents através dos arquivos torrents, e não somente pela suas respectivas URLs. Seria interessante

February 14, 2008 at 8:50 PM  
Anonymous Erica said...

Hello, I just wanted to say that your blog has been really useful for me..
I need all the help I can get, lol.. Thnx

January 10, 2012 at 1:21 PM  
Blogger mary Brown said...

Hi, Great.. Tutorial is just awesome..It is really helpful for a newbie like me.. I am a regular follower of your blog. Really very informative post you shared here. Kindly keep blogging. If anyone wants to become a Java developer learn from Java Training in Chennai. or learn thru Java Online Training in India . Nowadays Java has tons of job opportunities on various vertical industry.

November 21, 2017 at 6:28 AM  
Blogger Nikitha Raja said...

eat post! I am actually getting ready to across this information, is very helpful. Keep up the good work you are doing here.
Java Training in Chennai | Java Training Institute in Chennai

July 28, 2018 at 1:37 PM  
Blogger sumathi s said...

Good Post! Thank you so much for sharing this pretty post, it was so good to read and useful to improve my knowledge as updated one, keep blogging…
industrial safety course in chennai

October 15, 2018 at 7:33 AM  
Blogger Swetha Gauri said...

I believe there are many more pleasurable opportunities ahead for individuals that looked at your site.
safety course in chennai

October 15, 2018 at 8:09 AM  
Blogger sudha P said...

All the points you described so beautiful. Every time i read your i blog and i am so surprised that how you can write so well.
Selenium training in Chennai

Selenium training in Bangalore

December 29, 2018 at 6:54 AM  
Blogger Praylin S said...

Wonderful blog. I'm learning a lot from here. Keep us updated with more such posts.
Embedded Training in Chennai
Embedded courses in chennai
Mobile Testing Training in Chennai
Mobile Testing Course in Chennai
Manual Testing Training in Chennai
Manual Testing Courses in Chennai
Embedded Training in Tambaram
Embedded Training in Anna Nagar

January 18, 2019 at 11:43 AM  
Blogger sathish said...

The post is written in very a good manner and it entails many useful information for me. I am happy to find your distinguished way of writing the post. Now you make it easy for me to understand and implement the concept.

Oracle Training in chennai
web designing training in chennai
web designing training in chennai | angularjs training in chennai
sas training institute in chennai
software testing training in chennai

January 29, 2019 at 7:53 AM  
Blogger Ron Wale said...

Thanks for sharing such informative post. Keep on sharing such informative post. Buy E Cigarette Melbourne from leading online Store.

January 31, 2019 at 12:32 PM  
Anonymous Diwakar said...

Great article
marketing course in chennai

February 2, 2019 at 2:55 PM  
Blogger Maria said...

I sat at home and heard the screams of joy from my son's room. I decided to peep that there, and he played in an online casino. Of course, I got angry, but he quickly reassured me and showed everything on this website. novel best online casino He won money twice as much as he put a lot of slot machines, slots and all that, now we sit together

February 6, 2019 at 2:20 PM  
Blogger bsnlll said...

bsnl speedtest
BSNL Speed Test:- Today the high-speed internet is considered as the most important requirement of an internet connection. It ensure comfort Bsnl speedtest.

February 23, 2019 at 2:44 PM  
Blogger ppsspppsp said...

ppsspp emulator for mobile
ppsspp emulator apk mirror
ppsspp gold psp emulator
ppsspp emulator gold apk mania
ppsspp emulator games for mobile
ppsspp emulator new version download

March 28, 2019 at 7:51 AM  
Blogger christopher said...

medicare eligibility criteria
medicare number
medicare remark codes
medicare annual deductible 2019
medicare advantage
medicare adjustment reason codes
medicare address
medicare appeal form
medicare appeal address

April 17, 2019 at 2:57 PM  
Anonymous Website Designing Company Lucknow said...

Thanks For Sharing...
Website designing Company Shamli
Website Designing Company Varanasi
Web Designing Gorakhpur
Website designing Company Ghazipur
Website designing Company Dehradun
Website designing Company Shahjahanpur
Website designing Company Lucknow

June 12, 2019 at 1:52 PM  

Post a Comment

Subscribe to Post Comments [Atom]

<< Home