All Applets and Web Start applications must be signed with
a certificate from a trusted authority to run in a Java™ 7 environment.
The default security configuration for Java 7 running in a browser changes significantly
in the January 2014 CPU (Oracle 7u51, IBM® 7
SR6-FP1). When running in these Java environments:
- All Applets and Web Start applications must be signed with a certificate
from a trusted authority. Self-signed certificates will not be accepted.
- All JARS are required to have the Permissions attribute
set in the JAR Manifest.
The
ctgclient.jar file shipped
with APAR PM99430 (PTF UI11855) has
the
Permissions attribute set and is signed with
trusted CA certificates from Symantec:
Any other JARs running as part of Applets and Web Start applications
will also need to have the Permissions attribute
set in the JAR Manifest and be signed with a certificate from a trusted
authority.