Hello, we need support of X.509 certificates using elliptic curves for client-auth within an servlet-application. The certificates we use are coded using DomainParameters within the PublicKey object. When using the sun-jdk this will lead to an error because the sun-jce implementation only supports elliptic curves as NamedCurves.
The best way to fix this is to use another security-provider e.g. bouncycastle.
For that we need a way to configure it within tomcat.
I have attached three patch-files as a proposal for this new configuration
parameter.
Please let me know if this changes can be added in a future release of tomcat.
Yours sincerely
--
Peter Knopp
------------------------
media transfer AG
Dolivostrasse 11
D-64293 Darmstadt
Germany
Phone : +49 6151 8193 23
Fax : +49 6151 8193 41
E-Mail: pkn...@mtg.de
WWW : www.mtg.de
media transfer AG
Firmensitz: Dolivostr. 11, 64293 Darmstadt
Registergericht: Amtsgericht Darmstadt, HRB 8901
Vorstand: Jürgen Ruf (CEO), Andrea Klenk, Günter Hirschmann
Aufsichtsratsvorsitzender: Dr. Thomas Milde
AjpAprPatch.tgz
Description: Binary data
smime.p7s
Description: S/MIME Cryptographic Signature
