SFelix consists in a specific Security Layer, which is defined by OSGi Specifications Release 4. The validity of the digital signature of each bundle is checked before the installation. When the bundle has been modified after its publication, or chen the signer is unknown, the bundle is rejected and can not be installed.
When Launching a new OSGi platform, the OSGi shell print suitable messages to confirm that the installed bundles have valid signatures.
Attempt to Install an unsigned bundle
When an unsigned bundle or a bundle with an invalid signature is given for installation, it is rejected.
Launching a application
When a given application is started, either locally or through the Bundle Repository, all bundles are checked before their installation.