×

Good News Everybody!

The new search engine is LIVE!

Please report any problems to david (at) midrange.com.



  1.  Home
  2. JAVA400-L
  3. February 2009

Re: Can i5 encryption APIs be used so that they are compatible with encryption does with Java Security (JCE) classes -- particularly strong AES

Blalock, Bill wrote:
Does anyone know if i5 encryption APIs be used so that they are
compatible with encryption does with Java Security (JCE) classes? I am
especially interested in AES for PCI reasons.

I'm not 100% sure on this ... BUT ... I can say that (at least in my experience) certificates generated with java are *NOT* compatible with the DCM. I don't know why.

I was trying to setup SSL communication between a java server (running on i) and another java server using SSL ... when I tried to use the native encryption functionality I could not get the certificates to work with each other.

What I had to do is bypass the native encryption functionality and tell java to use a different ssl key & trust factory, as well as socket & server socket factories. I updated the java.security file and pointed the JVM to use that file. I set the 'javax.net.ssl.trustStore' and 'os400.security.properties' properties to point to my own trust store and security properties file.

david


This thread ...
Follow-Ups:
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2026 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.