Yes, it is definitely possible. We have successfully used smartcards - currently working on integrating more than one HSM - with the XMLSignature libraries from the Java Web Services Developer Pack (JWSDP - which includes the JSR 105-code to the best of my knowledge).
It also works through the PKCS11-Bridge in the JDK. Sample code - for those interested - is available at http://www.strongkey.org. Regards, Arshad Noor StrongAuth, Inc. ----- Original Message ----- From: Julien PASQUIER <[EMAIL PROTECTED]> Date: Friday, May 4, 2007 8:20 am Subject: Re: XML Security and HSM > Hi, > > I think that it is possible. You must develop or used a JCE > provider (a KeyStore implementation to use the private key of your > HSM).You could use a provider implementation of PKCS#11 (i.e : > IAIK or Sun with JRE 1.5) if your HSM support the PKCS#11 interface. > > Julien > > ----- Original Message ----- > From: Eric Tournier > To: security-dev@xml.apache.org > Sent: Friday, May 04, 2007 4:41 PM > Subject: XML Security and HSM > > > Hi :) > > I use xml-sec-1.4.0.jar library to perform signature and > encryption. I wish to do these operations with a HSM such as LUNA, > Trustway,... Can you tell me if it is possible ? > > Thanks in advance > Eric > > Eric TOURNIER > Ingénieur concepteur objet senior - Expertise technique > Java/J2EE/XML/AOP - Spring/Hibernate/Maven > ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯ > STERIA > Département Banque, Assurance et Finance > 46, rue Camille Desmoulins - 92782 Issy-Les-Moulineaux Cedex 9 > > Tél : 01 53 94 22 94 - Mob : 06 50 01 38 30 > [EMAIL PROTECTED] > > > > The belief in the possibility of a short decisive war appears to be > one of the most ancient and dangerous of human illusions. > _______________________________________________ > Robert Wilson LYND (1879-1949) > > > > > ------------------------------------------------------------------- > -------------------- > Orange vous informe que cet e-mail a été contrôlé par l'anti-virus > mail.Aucun virus connu à ce jour par nos services n'a été détecté. > > >
