I think the max you can do with JavaSoft is 40bit. I would try using the
Netscape 128bit one. Make sure you generate the original key pair using
the US "Do-Not-Export-Or-We-Will-Kill-You" version of the JSSE. We used
RSA too.
sach
On Fri, 3 Nov 2000, Raymond Pancura wrote:
> We are using the US release of the JSSE version 1.0.2. The cert was
> provided by verisign for a keysize of 1024 bits. The keyalg we used to
> generate the key was "RSA". The provider we choose when we made the cert
> request was JavaSoft (it was the closes on the list).
>
> I have just had verisign reissue the cert using a 512-bit key. If this
> works I will let everyone know. If anyone else has any ideas I would REALLY
> like to hear from you.
>
> Thanks
>
>
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Lorin
> Kobashigawa-Bates
> Sent: November 3, 2000 2:23 PM
> To: Orion-Interest
> Subject: Re: 128-bit SSL
>
>
> Which JSSE are you using? If it's the one packaged with Orion, you have
> ot go and get the US one from Javasoft.
>
> Which 128bit key are you using? We were successful using the Netscape
> 128bit key, but it was kind of tricky, we ended up having to re-run the
> key several times because of hostname mixups.
>
> -Lkb
>
> On Fri, 3 Nov 2000, Raymond Pancura wrote:
>
> > Has anyone been successful in configuring Orion to use 128-bit SSL
> (1024-bit
> > public key in cert)? I don't have a problem with the test certs, but they
> > only allow 40-bit (512-bit key in cert). Whenever I try to start Orion, I
> > get the following message:
> > Licensed to e-plicity.com
> > Orion/1.3.8 initialized
> > Error listening to SSLServerSocket: No available certificate corresponds
> to
> > the
> > SSL cipher suites which are enabled.
> > The production certificate from Verisign has been imported into our
> > keystore.
> >
> > Does anybody know if this is an Orion problem or a JSSE issue? I am at a
> > loss.
> >
> >
>
>
>
>