harmony-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Geir Magnusson Jr <g...@pobox.com>
Subject Re: [classlib] choose one [x-net] || [security] for HARMONY-536 (JSSE provider)
Date Fri, 21 Jul 2006 02:55:37 GMT


Mikhail Loenko wrote:
> 2006/7/21, Geir Magnusson Jr <geir@pobox.com>:
>>
>>
>> Tim Ellison wrote:
>> > Geir Magnusson Jr wrote:
>> >> I've asked Sun about this.  It would be nice if people could re-use
>> >> their root cert store.
>> >>
>> >> What format does IBM and BEA use?
>> >
>> > FWIW the IBM Java SDK passes through the Sun format JKS.
>>
>> Does "passes through" means it's able to use it?
>>
>> >  Besides JKS
>> > there is also the BouncyCastle format (BKS) and a GNU keystore format.
>> >
>> > Take your pick.
>>
>> Well, I was just thinking that if people already have cacerts w/
>> additions, they may want to drop them into place and use them w/o having
>> to convert...
> 
> ...or we can make this conversion as easy as possible.
> I think we should learn our keytool doing it.
> 
> BTW, can you please share some you think "common" scenarios people use
> when operate with certs? That would help us understand additional
> requirements
> for our keytool.

Well, in my experience, I had to maintain a set of certs on my servers.

But this is different - this is really about being able to let people
reuse their root certs from vendor to vendor.

I wonder why Sun chose a proprietary route...

geir


---------------------------------------------------------------------
Terms of use : http://incubator.apache.org/harmony/mailing.html
To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
For additional commands, e-mail: harmony-dev-help@incubator.apache.org


Mime
View raw message