-crypto@lists.mozilla.org
Assunto: PKCS #11 sucks. Re: Fedora Crypto Consolidation
A cryptographic subsysten based on C and not having a registration
facility is not a solution for the 21st century.
AR
- Original Message -
From: "Jean-Marc Desperrier" <[EMAIL PROTECTED
5:22
Subject: Re: Fedora Crypto Consolidation
Arshad Noor wrote:
> Given that the Fedora community is embarking on an effort
> to consolidate crypto keystores and libraries, it would
> make sense to take the needs of the Java community also
> into consideration in the design and implementat
ca/Los_Angeles
Subject: Re: Fedora Crypto Consolidation
Since java 1.5, there is a
pkcs#11 base JCE included by default in the SUN JVM. It works with NSS,
if you configure correctly some compatibility options :
http://java.sun.com/javase/6/docs/technotes/guides/security/p11guide.html#NSS
So the be
Arshad Noor wrote:
> Given that the Fedora community is embarking on an effort
> to consolidate crypto keystores and libraries, it would
> make sense to take the needs of the Java community also
> into consideration in the design and implementation.
> [...]
> What would be ideal is for JSS to evolv
S11-Bridge (and SunCAPI-
Bridge) to hide the provider-specific configuration, it does
add a level of complexity that can be a bear to debug when
things go wrong.
This is why I expressed the desire to see something come
out of the Fedora Crypto Consolidation (FCC) effort that will
make it possibl
Robert Relyea wrote:
> Arshad Noor wrote:
>> What would be ideal is for JSS to evolve into becoming
>> just another pluggable JCE Provider and hide the access
>> to the consolidated Fedora crypto keystore/library
>> behind that interface. You will then be doing two
>> communities a great service.
Arshad Noor wrote:
What would be ideal is for JSS to evolve into becoming
just another pluggable JCE Provider and hide the access
to the consolidated Fedora crypto keystore/library
behind that interface. You will then be doing two
communities a great service.
IIRC, JSS is a JCE provider, as w
rshad Noor
StrongAuth, Inc.
Robert Relyea wrote:
>> It's part of the Fedora Crypto Consolidation project:
>> http://fedoraproject.org/wiki/FedoraCryptoConsolidation
___
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
htt
8 matches
Mail list logo