Dear Odi,
I am using jsse for the ssl implementation.
I still want to use HttpClient in my program.
If I am assuming that the server and client certificate both valid and they're
communicating to each other. Are they communicating in a secure line? (ie: no one can
get or decrypt the data ?)
Querent wrote:
Dear Odi,
I am using jsse for the ssl implementation. I still want to use
HttpClient in my program.
As mentioned before, HttpClient uses Sockets as created by JSSE. There
is nothing you can configure in HttpClient except of a custom
SocketFactory (which you can use to change
Quent,
You might also read Bruce Schneier's book called Applied Cryptography,
(and his other books, too). Every security system has its inescapable
flaws. HTTPS/SSL/TLS, for example, depends on the certificates not
being compromised while they're still valid, and on the computational
