Re: apache java xml sec library release 1.4RC3 jar has been uploaded.

Mon, 30 Oct 2006 13:58:14 -0800 

Miroslav Nachev wrote:



If anyone else would like to see JSR 106 in JDK 7, please send me an 
email with a few more details as to why it would be helpful, and your 
company/organization name (if applicable). 

COSMOS Software Enterprises, Ltd.
Sofia, Bulgaria


It is not a problem to be used as external library, but is more useful 
if is part of JDK.



Also I  would like to tell you for some disadvantages in the existing 
XML Digital Signature included in JDK6. There are too many 
functionalities which exists in Apache XML Security and internal classes 
in JDK6, but doesn't exists in official JDK6 API. There are cases where 
if you start using internal classes which are not part of JDK XML 
Digital Signature but are part of Apache XML Security some clashes 
(conflicts) occur with classes with the same name which are from 
different package names.



We rename the Apache XML Security packages in the JDK to avoid these 
type of issues, so I would be interested to know more about the problems 
you are having.



Also to retrieve more information from Certificates I use internal 
classes from JDK instead to use external libraries. Why these 
functionalities are hidden instead of to being put to official API?


Can you give me more specific examples of which classes you find useful.


The last question is why is it not possible to generate version 3 
X509Certificates using JDK? That's why we have to use external libraries 
like OpenSSL and other.



Yes, certificate generation API/tools has been requested by other users, 
and is something we would like to do and your feedback is important to 
help justify it, so I will pass it on.



Thanks for the feedback. If others on this list have other security 
features they would like to see in the JDK, please let me know. Also, 
feel free to email me privately if you want as not everyone on this list 
may be interested in this discussion.



Disclaimer: please note that due to resources, etc we will not be able 
to accomodate all requests. Also, all Java SE platform features are 
subject to JCP (Java Community Process) approval.


--Sean























					Reply via email to