-
Enhancement
-
Resolution: Fixed
-
P2
-
6
-
beta
-
generic
-
generic
From http://jplan.sfbay/feature/076 :
Description
Network Security Services (NSS) is the library that is used for all security functions in Mozilla as well as by all native components of the JES stack. Via the PKCS#11 support in Tiger, it is already possible the access the NSS keystore. This feature intends to address a few missing pieces:
. NSS stores configuration information about its PKCS#11 modules in its secmod.db file, which we currently do not understand. By accessing this information we could reduce/eliminate the need for manual configuration.
. NSS uses non-standard attributes to mark certificates as trusted. We should add support for them.
Motivation
AppServer and Access Manager have expressed their unhappiness about the current state of affairs and the extra work it causes them.
Plugin decided to use the JSS library to access NSS rather than the JDK's PKCS#11 support because of the configuration issue. However, JSS is receiving little attention in Sun now and therefore may not be a viable long term solution.
###@###.### 2005-05-20 18:41:46 GMT
Description
Network Security Services (NSS) is the library that is used for all security functions in Mozilla as well as by all native components of the JES stack. Via the PKCS#11 support in Tiger, it is already possible the access the NSS keystore. This feature intends to address a few missing pieces:
. NSS stores configuration information about its PKCS#11 modules in its secmod.db file, which we currently do not understand. By accessing this information we could reduce/eliminate the need for manual configuration.
. NSS uses non-standard attributes to mark certificates as trusted. We should add support for them.
Motivation
AppServer and Access Manager have expressed their unhappiness about the current state of affairs and the extra work it causes them.
Plugin decided to use the JSS library to access NSS rather than the JDK's PKCS#11 support because of the configuration issue. However, JSS is receiving little attention in Sun now and therefore may not be a viable long term solution.
###@###.### 2005-05-20 18:41:46 GMT
- duplicates
-
JDK-5091008 Add support for NSS trust attributes
-
- Closed
-