Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-4447075

Sun's JSSE Implementation should use JCE

XMLWordPrintable

    • Icon: Enhancement Enhancement
    • Resolution: Fixed
    • Icon: P4 P4
    • 1.4.0
    • 1.0.2
    • security-libs
    • beta3
    • generic, x86
    • generic, windows_2000



      Name: krC82822 Date: 04/18/2001


      java version "1.3.0_02"
      Java(TM) 2 Runtime Environment, Standard Edition (build
      Java HotSpot(TM) Client VM (build 1.3.0_02, mixed mode)

      The current version of the JSSE API (1.0.2) cannot easily be used by 3rd
      parties. The reference implementation does not support the use of alternative
      JCE crypto providers, so it's not possible to use it with a smart card based
      application.

      If you want to replace the crypto provider, you have to reimplement the whole
      SSLSocket stuff including all required SSL protocol versions.
      Since most of the methods and interfaces used for the communication between
      SSLContext, SSLSocket and the SocketFactory are protected on package level it
      is hardly possible to use the existing design in the reimplementation.

      Even worse, due to restrictions of the global (non-US) version of JSSE, it is
      not even possible to replace the reference implementation completely with a new
      3rd party JSSE provider, because the Default-SSLSocketFactory cannot be changed
      in this version.

      In other words; the current version is only usable with the unchanged reference
      implementation, which is not the idea, as our own documentation confirms.
      I read about plans to integrate the JSSE API into JCE 1.3 which is in my
      opinion a good chance to define some classes (TrustManager, KeyManager,
      SSLContext) of the reference implementation as standard api and to provide a
      way to replace the JCE provider.
      (Review ID: 120928)
      ======================================================================

      Name: krC82822 Date: 08/07/2001


      java version "1.3.0"
      Java(TM) 2 Runtime Environment, Standard Edition (build 1.3.0-C)
      Java HotSpot(TM) Client VM (build 1.3.0-C, mixed mode)

      I have a provider in which i have an implementation of
      MD5WITHRSA,MD2WITHRSA,SHA1WITHRSA algorithms. I have installed my provider as
      the first provider dynamically. My problem is that JSSE doesnt uses my
      signature implementations during the SSL handshake. I think my provider
      installation is ok because when i test by Signature.getInstance("MD5WITHRSA"),
      my own implementation is returning. I am struck up with this..Pls help
      (Review ID: 126868)
      ======================================================================

            andreas Andreas Sterbenz
            kryansunw Kevin Ryan (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Created:
              Updated:
              Resolved:
              Imported:
              Indexed: