RES: PKCS #11 sucks. Re: Fedora Crypto Consolidation

-crypto@lists.mozilla.org Assunto: PKCS #11 sucks. Re: Fedora Crypto Consolidation A cryptographic subsysten based on C and not having a registration facility is not a solution for the 21st century. AR - Original Message - From: "Jean-Marc Desperrier" <[EMAIL PROTECTED

PKCS #11 sucks. Re: Fedora Crypto Consolidation

5:22 Subject: Re: Fedora Crypto Consolidation Arshad Noor wrote: > Given that the Fedora community is embarking on an effort > to consolidate crypto keystores and libraries, it would > make sense to take the needs of the Java community also > into consideration in the design and implementat

Re: Fedora Crypto Consolidation

ca/Los_Angeles Subject: Re: Fedora Crypto Consolidation Since java 1.5, there is a pkcs#11 base JCE included by default in the SUN JVM. It works with NSS, if you configure correctly some compatibility options : http://java.sun.com/javase/6/docs/technotes/guides/security/p11guide.html#NSS So the be

Re: Fedora Crypto Consolidation

Arshad Noor wrote: > Given that the Fedora community is embarking on an effort > to consolidate crypto keystores and libraries, it would > make sense to take the needs of the Java community also > into consideration in the design and implementation. > [...] > What would be ideal is for JSS to evolv

Re: Fedora Crypto Consolidation

S11-Bridge (and SunCAPI- Bridge) to hide the provider-specific configuration, it does add a level of complexity that can be a bear to debug when things go wrong. This is why I expressed the desire to see something come out of the Fedora Crypto Consolidation (FCC) effort that will make it possibl

Re: Fedora Crypto Consolidation

Robert Relyea wrote: > Arshad Noor wrote: >> What would be ideal is for JSS to evolve into becoming >> just another pluggable JCE Provider and hide the access >> to the consolidated Fedora crypto keystore/library >> behind that interface. You will then be doing two >> communities a great service.

Re: Fedora Crypto Consolidation

Arshad Noor wrote: What would be ideal is for JSS to evolve into becoming just another pluggable JCE Provider and hide the access to the consolidated Fedora crypto keystore/library behind that interface. You will then be doing two communities a great service. IIRC, JSS is a JCE provider, as w

Fedora Crypto Consolidation

rshad Noor StrongAuth, Inc. Robert Relyea wrote: >> It's part of the Fedora Crypto Consolidation project: >> http://fedoraproject.org/wiki/FedoraCryptoConsolidation ___ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org htt