Has anybody else seen or be able to reproduce this.
Using JSS, if you create an SSLServerSocket with need or want client
auth set to true, and you attempt a handshake with a client that does
not send a client certificate, JSS throws some native exception that
brings down the VM.
Thread: main (pri
Hi folks,
I was hoping somebody could confirm or correct my understanding of
which version of NSS is FIPS certified.
As I unserstand from
https://wiki.mozilla.org/FIPS_Validation
Softokn version 3.11.4 is the most recent FIPS certified version.
And this is a component of NSS 3.11.4 and 3.11.5
I'm sure I'm doing something really stupid ... but any help would be
appreciated.
Thanks
...Dean...
___
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
Thanks for the information guys. In this post, and in other posts
I've made in the last few weeks. They have all been very helpful.
___
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
On Jul 28, 6:47 pm, Nelson B Bolyard <[EMAIL PROTECTED]> wrote:
> Dean wrote, On 2008-07-28 13:50:
>
>
>
> > If an application wants to claim FIPS compliance does it have to be
> > implemented following all the guidelines set out in the FIPS certified
> > a
. Do libraries get special consideration?
My knowledge of FIPS is extremely limited so I'm sure I'm
misunderstanding something fundimental.
Thanks
...Dean...
___
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozil
On Jul 22, 7:15 pm, "Wan-Teh Chang" <[EMAIL PROTECTED]> wrote:
> On Tue, Jul 22, 2008 at 1:22 PM, Dean <[EMAIL PROTECTED]> wrote:
>
> > I've been reading around about key generation and key material
> > manipulation and am hearing that key material
Glen,
Thanks for the help. I was so sure I had the checksum files in the
right place I had them but only with the libraries I thought
I was running against, not the ones I was really running against.
Whoops.
I have to ask for a little more help though.
I've been reading around about k
Sorry to ask such a simple question, but I have been unable to
successfully run JSS in FIPs mode. I am using the binary distribution
for:
JSS 4.2.5
NSPR 4.6.4
NSS 3.11.4
The following (very) simple Java program
import org.mozilla.jss.CryptoManager;
public class SimpleTest4 {
public st
If I try to reconstitute an AES key using a SecretKeySpec and it's key
bytes I get an AssertionException thrown from
PK11KeyWrapper.algFromType(SymmetricKey$Type) when the cipher is
initialized with the KeySpec instance.
According to the doc at
http://www.mozilla.org/projects/security/pki/jss/pro
It appears that when I call Cipher.update() with arbitrarly sized
input for a DESede/CBC/NoPadding Cipher I get a TokenRuntimeException
with the description "Cipher operation failed".
The error is not thrown if the input is a multiple of the cipher's
block size, in this case a multiple of 8.
Othe
Hi Glen,
Thanks for your reply. I was afraid of that. I can understand not
bothering to expose the RSA crypto APIs in JSS ... especially as it
would mean some reworking of the Cipher implementation to accept keys
other than SecretKey.
I see that the NSS libraries do have APIs that should work.
Hi folks,
I've been trying to use the JSS APIs to encrypt and decrypt data using
an RSA Cipher but I keep getting an InvalidKeyException. Invalid key
type: org.mozilla.jss.pkcs11.PK11RSAPublicKey.
I have a sample that works with our own JCE provider and the JCE
provider from Bouncy Castle. I've
13 matches
Mail list logo
