Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > comp.lang.java.security > #198

Re: Secure Sopckets and M

From "dave.clarke" <dave.clarke@THRWHITE.remove-dii-this>
Subject Re: Secure Sopckets and M
Message-ID <d60a90f1-b4d1-490a-82e5-f422d4b30d8c@h2g2000hsg.googlegroups.com> (permalink)
Newsgroups comp.lang.java.security
References <6lmc80Fd5u7tU1@mid.individual.net>
Date 2011-04-27 16:08 +0000
Organization TDS.net

Show all headers | View raw

  To: comp.lang.java.security
On 15 Oct, 15:15, Ronny Schuetz <Usenet....@gishpuppy.com> wrote:
> dave.cla...@reflective.com wrote:
> > Using JDK 6 (embedded JSSE) we need some code that can set up an SSL
> > socket for an HTTPS connection where BOTH server and client
> > certifricates can be exchanged.
>
> > We have tried all sorts of things, but I wonder if someone out there
> > has a code fragment we can look at which is known to work.
>
> For SSLServerSockets, you just need a flag to request the client
> certificate during the handshake:
>
> http://java.sun.com/javase/6/docs/api/javax/net/ssl/SSLSocket.html#se...)
>
> The client certificate can be retrieved from the SSLSession after the
> handshake.
>
> It is up to the server to request the client certificate, i.e. if you're
> working on a client, I don't think that you can send your certificate to
> the server by your own in a SSL compliant way if the server didn't
> requested it.
>
> Ronny

Hi Ronny

Thanks for your reply. We have now solved this problem .

It seems as if when authenticating clients, you can't give a keystore
to the SSLSocket, you have to give a specific certificate.

We also made one or two other simple errors which were relatively easy
to track down.

Thanks for taking the trouble to reply.

All the very best

Dave

---
 * Synchronet * The Whitehouse BBS --- whitehouse.hulds.com --- check it out free usenet!
--- Synchronet 3.15a-Win32 NewsLink 1.92
Time Warp of the Future BBS - telnet://time.synchro.net:24

Back to comp.lang.java.security | Previous | NextPrevious in thread | Find similar

Thread

Secure Sopckets and Mutua "dave.clarke" <dave.clarke@THRWHITE.remove-dii-this> - 2011-04-27 16:08 +0000
  Re: Secure Sopckets and M "Ronny Schuetz" <ronny.schuetz@THRWHITE.remove-dii-this> - 2011-04-27 16:08 +0000
    Re: Secure Sopckets and M "dave.clarke" <dave.clarke@THRWHITE.remove-dii-this> - 2011-04-27 16:08 +0000

csiph-web