Hello,
I have some question according to cryptography in perl API provided by
OpenSRS.
I work on Java implementation of this library and use JCE.
THe problem is that I cant reporduce with JCE authentication method.
User get a challange , generate cipher and send MD5 checksum to send_data
method. If cipher exists, send_data crypt this md5 chesum with a cipher.
AFAIK length of MD5 checksum is 16 bytes lenght, but when I see length of
$message, which is crypted by the sipher MD5 checksum, it is 40 bytes
lentgh. When I use Cipher class from JCE API $message length is 16 bytes
also. I notice that perl $cipher add 'RandomIV' string and any other data
to the crypted message and message became 40 bytes length.
How this string can be aimed on Java? I mean what should I do with md5
chesum on Java to get correct string which will be accepted by the OpenSRS
server?
Sincerely,
Sergey Lukichev
[EMAIL PROTECTED]
