Currently all the JClouds examples uses HTTP only. That means plain username/password(even a single time) can be stolen, even if its submitted for a token.
Are you able to modify the JRE keystore, or set it using the standard -Djava.net.ssl... parameters (e.g. [1]) as specified in the answer [2]?
ap [1] http://docs.oracle.com/javadb/10.3.3.0/adminguide/cadminsslserver.html [2] http://stackoverflow.com/a/13423904/217013
