Re: Re: RAMPART 1.3 only with File-Keystores ?

Thu, 18 Sep 2008 22:13:11 -0700 

Hi Christian,
       Do you want to use these keys for SSL or to do message level security
? I assumed you need to do message level security. It seems the thread [1]
mentioned by Steve talks about how to use HSM to do the SSL handshake.

thanks,
nandana


[1] -
http://markmail.org/message/irygbllfn2of77vx?q=list:org%2Eapache%2Ews%2Eaxis-user+HSM#query:list%3Aorg.apache.ws.axis-user%20HSM+page:1+mid:iaaq4fkxfkaze6gg+state:results

On Fri, Sep 19, 2008 at 12:33 AM, <[EMAIL PROTECTED]> wrote:

> There was a short thread about using an HSM in the Axis2 group pretty
> recently. You might want to take a look at that and contact the original
> poster - it appears that they were able to get this to work.
>
> ______________________________________________
> Steve Gruverman, Programmer
> IntelliCare, Inc. | A Medco Health Solutions Company
>
>
>
>
>  From:       "Christian Mielke" <[EMAIL PROTECTED]>
>
>  To:         [email protected]
>
>  Date:       09/18/2008 11:20 AM
>
>  Subject:    Re: Re: RAMPART 1.3 only with File-Keystores ?
>
>
>
>
>
>
> Hi,
> thanks for the fast reply.
>
> A Hardware Security Module (HSM) is a appliance that can store private keys
> inside and these keys cannot be exported anymore. The keys are safe inside
> this appliance.
>
> With a custom crypto implementation do you mean something to replace the
> Merlin Crypto Provider?
>
> Christian
> ----- original Nachricht --------
>
> Betreff: Re: RAMPART 1.3 only with File-Keystores ?
> Gesendet: Do, 18. Sep 2008
> Von: Nandana Mihindukulasooriya<[EMAIL PROTECTED]>
>
> > I didn't quite get what is meant by hardware certificate store but you
> may
> > be able to do this by writing a Custom Crypto implementation and using it
> > with Rampart.
> >
> > thanks,
> > nandana
> >
> > On Thu, Sep 18, 2008 at 7:11 PM, Christian Mielke <[EMAIL PROTECTED]> wrote:
> >
> > > Hello,
> > >
> > > Rampart works great with file keystores somewhere on the file system,
> but
> > > is there the possibility to use a hardware security module with
> RAMPART?
> > The
> > > hardware security module is a hardware certificate store inside the
> same
> > > network like the application server.
> > >
> > > Greetings
> > >
> > > Christian
> > >
> >
> >
> >
> > --
> > Nandana Mihindukulasooriya
> > WSO2 inc.
> >
> > http://nandana83.blogspot.com/
> > http://www.wso2.org
> >
>
> --- original Nachricht Ende ----
>
>
> --
> This message has been scanned for viruses and
> dangerous content by MailScanner, and is
> believed to be clean.
>
>
>
>


-- 
Nandana Mihindukulasooriya
WSO2 inc.

http://nandana83.blogspot.com/
http://www.wso2.org

Reply via email to