×

Good News Everybody!

The new search engine is LIVE!

Please report any problems to david (at) midrange.com.



  1.  Home
  2. JAVA400-L
  3. February 2009

Re: Can i5 encryption APIs be used so that they are compatible with encryption does with Java Security (JCE) classes -- particularly strong AES

Blalock, Bill wrote:
Does anyone know if i5 encryption APIs be used so that they are
compatible with encryption does with Java Security (JCE) classes? I am
especially interested in AES for PCI reasons.

I'm not 100% sure on this ... BUT ... I can say that (at least in my experience) certificates generated with java are *NOT* compatible with the DCM. I don't know why.

I was trying to setup SSL communication between a java server (running on i) and another java server using SSL ... when I tried to use the native encryption functionality I could not get the certificates to work with each other.

What I had to do is bypass the native encryption functionality and tell java to use a different ssl key & trust factory, as well as socket & server socket factories. I updated the java.security file and pointed the JVM to use that file. I set the 'javax.net.ssl.trustStore' and 'os400.security.properties' properties to point to my own trust store and security properties file.

david


As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow-Ups:
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2026 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.