Has anyone ever seen this or does anyone have an idea of how I can get
this crypto provider to be “installed” and utilized in a fips compliant
mode per sun java docs?
I *thought* that JSS wasn't a JSSE implementation and you needed to
write JSS specific code to do SSL sockets but I might be wrong. An
alternative to using JBOSS->JSS->NSS is just configuring Java to use NSS
directly through the PKCS#11 interface. You can configure the bridge in
FIPS mode.
http://java.sun.com/javase/6/docs/technotes/guides/security/p11guide.html#NSS
I do use JSS for SSL using the JSS socket factories for both HTTP and
LDAP. I actually like it a lot better than JSSE. I don't currently,
but have played around with accessing NSS through the Sun PKCS11 bridge
and it does work. Unfortunately I've never set up a Java App Server to
use any of it so I can't help you directly with that.
Dave
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
