Can you please send me the details of EXACTLY what kind of
jar signing needs to be done to get the
RSA stuff working? I dug/googled a bit but could not find the details.
Here's the relevant pointer:
http://java.sun.com/j2se/1.4.2/docs/guide/security/jce/HowToImplAJCEProvider
.html
Basically
Scott,
Can you please send me the details of EXACTLY what kind of jar signing needs to be
done to get the
RSA stuff working? I dug/googled a bit but could not find the details.
thanks,
dims
--- Davanum Srinivas [EMAIL PROTECTED] wrote:
I just downloaded OpenSSL, compiled nativejce.dll (MSDEV
suite and these figures may
differ from actual benchmarks]
Thanks regards,
Ayyappan Gandhirajan
-Original Message-
From: Erwin van der Koogh [mailto:[EMAIL PROTECTED]
Sent: Friday, February 27, 2004 9:27 PM
To: [EMAIL PROTECTED]
Subject: Re: Using XML security slows down the Axis Call
Scott, Berin,
Was reviewing the codeQuestion - If we write a class that extends
SignatureAlgorithm (see
SignatureBaseRSA$SignatureRSASHA1 for example, we should be able to use the NativeJCE
jar without
having to sign it first). Right?
Has anyone looked in the Claymore stuff?
Was reviewing the codeQuestion - If we write a class that
extends SignatureAlgorithm (see SignatureBaseRSA$SignatureRSASHA1 for
example, we should be able to use the NativeJCE jar without
having to sign it first). Right?
Yes, signature providers can be unsigned, it's encryption providers
Can you please post your config.xml?
thanks,
dims
--- Scott Cantor [EMAIL PROTECTED] wrote:
You mentioned in your previous e-mail that you have seen significant
performance improvements. Is this when interfaced with xml-security?
Yes, exactly. We edit the config.xml to reference the
understood. will kick the tires when i get a chance next week.
thanks,
dims
--- Scott Cantor [EMAIL PROTECTED] wrote:
Can you please post your config.xml?
I don't actually have it configured in or tested yet, I was busy playing
with Phaos' JCE while they were building this thing. I'll ask
and good luck.
-Jon
-Original Message-
From: Scott Cantor [mailto:[EMAIL PROTECTED]
Sent: Friday, February 27, 2004 2:55 PM
To: [EMAIL PROTECTED]
Subject: RE: Using XML security slows down the Axis Call
Some time ago (6 weeks or so) I did some performance measures (WSS4J has
You're saying you need Linux support from PKCS11 hardware devices,
and
haven't found any?
Rainbow is a fairly good example. They have a working PKCS11 library for
Linux but they won't give it to you without some real begging and no
support. More importantly, it turns out in Rainbow's case
Message-
From: Erwin van der Koogh [mailto:[EMAIL PROTECTED]
Sent: Friday, February 27, 2004 10:57 AM
To: [EMAIL PROTECTED]
Subject: Re: Using XML security slows down the Axis Call
But I am very much worried about the PERFORMANCE. After
org.apache.xml.security.Init.init() of xml security is called
consumed is quite high.
Regards,
Werner
- Original Message -
From: Anderson Jonathan [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Friday, February 27, 2004 7:23 PM
Subject: RE: Using XML security slows down the Axis Call
We're using Apache's WSS4J, which uses XML-Security under the covers
Some time ago (6 weeks or so) I did some performance measures (WSS4J has
timing logs build in) and we see here that Verification/Signature
is real time consuming, followed by public KEy encryption, followed
by symmetrical encryptionthis ordering comes with no surprise.
Only the real
Is this an open-source effort? (JCE Interface to OpenSSL)?
i'd like to use it as well.
Yeah, but it's not in the form of a complete solution so user beware. Just a
few needed algorithms and operations are implemented, and we don't implement
RSA crypto directly because it's not a signed JCE.
Scott,
That is really cool!
You mentioned in your previous e-mail that you have seen significant
performance improvements. Is this when interfaced with xml-security?
It would be interesting to turn this (or something like it) into a fully
fledged library. I wonder if one could apply for a
You mentioned in your previous e-mail that you have seen significant
performance improvements. Is this when interfaced with xml-security?
Yes, exactly. We edit the config.xml to reference the OpenSSL shim provider
for RSAwithSHA1, some hashing, etc. That static approach to the JCE
selection
15 matches
Mail list logo
