...
Code that needs to be signed can coexist with unsigned classes in the same package (or JAR
file). It is recommended that all privileged code be packaged together. (See rule ENV01-J. Place all privileged security-sensitive code in a single jar and sign and seal it for more information.) Furthermore, it is possible to grant privileges to code on the basis of the code base and/or its signer using a security policy.
...