Archive Security in ColdFusion Administrator enables you to securely send and receive your ColdFusion archived files (.CAR) electronically. By signing an archive file, you notify the recipient of the archive file that the file actually came from you and has not been forged or tampered with. By encrypting an archive file, you can help protect the contents of the archive file from intruders.
To secure an Archived (.car) file in ColdFusion and then to send and
receive it electronically, you will need to:
Obtain the security certificate (required for signing .car files).
Archive Security works in conjunction with signed certificates that are either issued by a Certificate Authority or generated by the Key Tool utility provided with Sun Microsystems' JDK1.3. Prior to using the signing features available in Archive Security you will need to:
Request a certificate from a Certificate Authority, like VeriSign, Inc. or generate a certificate using the Key Tool utility that is provided with Sun Microsystems' JDK1.3.
Export the certificate to your machine.
For more information about requesting and exporting certificates from a Certificate Authority, refer to the Certificate Authority Web's site. For more information about generating and exporting a certificate using the Key Tool utility provided with Sun Microsystems' JDK1.3, refer to documentation supplied with the JDK 1.3.
Use Archive Security to secure a CAR file
Use the Archive Security pages in ColdFusion Administrator to:
Import certificates to ColdFusion using the Archive Security, Certificates tab.
Export a certificate's corresponding public key using the Archive Security, Certificates tab.
Digitally sign a ColdFusion Archived file (.car) using the Archive Security, Sign Archive tab.
Verify the signature of a signed ColdFusion Archived file using the Archive Security, Verify Signature tab.
Encrypt a ColdFusion archived file (.car) using the Archive Security, Encrypt Archive tab. .
Decrypt an encrypted or signed ColdFusion
archive file using the Archive Security, Decrypt Archive tab.
Electronically send a secure CAR file
After you have a secured CAR file, you then can send and receive the secured CAR file electronically by using one of the following transport methods.
Email Program. Use an email program such as Microsoft Outlook to exchange secure CAR files by attaching the secured CAR file to an email message.
FTP Site. Exchange secure CAR files by posting the secure CAR file on an FTP (File Transfer Protocol) site.
Web Site. Exchange secure CAR files by posting the secure CAR file on a Web site.
Shared File System. Exchange secure CAR files by copying them to a shared local or remote network location.