JDK-6898831 : Need verisign class3 EV cert in cacerts
  • Type: Enhancement
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 7
  • Priority: P5
  • Status: Closed
  • Resolution: Duplicate
  • OS: solaris_9
  • CPU: sparc
  • Submitted: 2009-11-06
  • Updated: 2011-02-16
  • Resolved: 2009-11-23
Related Reports
Duplicate :  
JDK-6904162 - Add new VeriSign root CA certificates to JRE and remove some old/unused ones
Description
A DESCRIPTION OF THE REQUEST :
Please add Verisign's class 3 EV (extended validation) cert to cacerts file.  We are now using an EV cert provided by VeriSign, and it fails to work properly unless we manually add a cert to the cacerts file.

JUSTIFICATION :
VeriSign is a trusted cert provider.  Java cacerts file should contain*all* current cacerts from trusted providers.  (You'd really think somebody would be tasked with making sure this file stayed reasonably up-to-date....)

ACTUAL -
Can't verify EV certs acquired from VeriSign.

CUSTOMER SUBMITTED WORKAROUND :
can add certs manually, but must remember to re-apply changes after each Java upgrade.
Comments
EVALUATION Duplicate. Root cert will be added as part of 6904162.
23-11-2009