Since this is a security blog, we we have to check the sha256 hash to make sure we downloaded an official, unchanged JDK. To do this, we use a hash function (sha256) which will generate a deterministic (or consistent) signature for a given input. So if the file was changed in any way, the sha256 hash signatures will not match. If that happens, do not use the downloaded file!