Java SE (Java Platform, Standard Edition)

Hello,

we developed a java web start application and bought an SSL certificate to secure the communication between the application and the servlet (_no_ self-signed certificate).
Our intended java version is 1.5. The application jar is not signed.

When we try to start the java web start application we receive an warning dialog that the certificate is not trusted.

To shed some light on it we tried to download the application manually and start it as a normal java application.

Java 1.4.2_01 failed with error message
"javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: No trusted certificate found"
Details on java version:
java version "1.4.2_01" / Java(TM) 2 Runtime Environment, Standard Edition (build 1.4.2_01-b06) / Java HotSpot(TM) Client VM (build 1.4.2_01-b06, mixed mode)

Java 1.5.0_13 runs ok.
Details on java version:
java version "1.5.0_13" / Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0_13-b05) / Java HotSpot(TM) Client VM (build 1.5.0_13-b05, mixed mode, sharing)

This indicates that the java runtine knows about the certificate when the application is run as a standard java application.

Our problem is that we want to distribute the application as a java web start application, which, like I mentioned earlier, shows a warning dialog when starting up. The interesting thing is that this warning is shown while "bootstrapping" the application, that means the warning dialog is shown before the application jar has been downloaded to the client (just the jnlp file has been downloaded by the browser (which, by the way, has no problems at all with the certificate)).

To sum everything up: running 1.5.0_13 as java application runs ok, running 1.5.0_13 as java web start application shows warning dialog while bootstrapping.
Does JWS use a different set of certificates than the "normal" runtime ?

The 1.5.0_13 installation is unchanged (no deployment properties, no manually added certificates, etc.)

Please advise.

Regards,
Henning