santuario-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Arshad Noor <arshad.n...@strongauth.com>
Subject Re: XML Security and HSM
Date Sat, 05 May 2007 00:11:15 GMT
Yes, it is definitely possible.  We have successfully used smartcards - currently working on
integrating more than one HSM - with the XMLSignature libraries from the Java Web Services
Developer Pack (JWSDP - which includes the JSR 105-code to the best of my knowledge).  

It also works through the PKCS11-Bridge in the JDK.  Sample code - for those interested -
is available at http://www.strongkey.org.

Regards,

Arshad Noor
StrongAuth, Inc.

----- Original Message -----
From: Julien PASQUIER <julien.pasquier@wanadoo.fr>
Date: Friday, May 4, 2007 8:20 am
Subject: Re: XML Security and HSM

> Hi,
> 
> I think that it is possible. You must develop or used a JCE 
> provider (a KeyStore implementation to use the private key of your 
> HSM).You could use a provider implementation of PKCS#11 (i.e : 
> IAIK or Sun with JRE 1.5) if your HSM support the PKCS#11 interface.
> 
> Julien
> 
> ----- Original Message ----- 
> From: Eric Tournier 
> To: security-dev@xml.apache.org 
> Sent: Friday, May 04, 2007 4:41 PM
> Subject: XML Security and HSM
> 
> 
> Hi :)
> 
>  I use xml-sec-1.4.0.jar library to perform signature and 
> encryption. I wish to do these operations with a HSM such as LUNA, 
> Trustway,...  Can you tell me if it is possible ?
> 
> Thanks in advance
> Eric
> 
> Eric TOURNIER
> Ingénieur concepteur objet senior - Expertise technique
> Java/J2EE/XML/AOP - Spring/Hibernate/Maven
> ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
> STERIA
> Département Banque, Assurance et Finance
> 46, rue Camille Desmoulins - 92782 Issy-Les-Moulineaux Cedex 9
> 
> Tél : 01 53 94 22 94 - Mob : 06 50 01 38 30
> eric.tournier@steria.com 
> 
> 
> 
> The belief in the possibility of a short decisive war appears to be
> one of the most ancient and dangerous of human illusions.
> _______________________________________________
> Robert Wilson LYND (1879-1949)
> 
> 
> 
> 
> -------------------------------------------------------------------
> --------------------
> Orange vous informe que cet e-mail a été contrôlé par l'anti-virus 
> mail.Aucun virus connu à ce jour par nos services n'a été détecté.
> 
> 
> 


Mime
View raw message