Security in JDK & JCE 1.2

Karen Rosenthal (karen.rosenthal@commerceone.com)
Thu, 19 Nov 1998 11:17:22 -0800

Questions:

1. In reading online documentation about the signature model in 1.2, it
seems that the signature implementation is solely through signed .jar
files. Do you have plans to support S/MIME? If so, within what
timeframe? Do you have any documentation showing the format/layout of
'signed .jar files'?

2. I've read conflicting documentation about creation of certificates
through your 1.2 offerings, but it appears that you do/can generate
X.509 v1 self-signed certificates. Is this true? If so, what are your
plans for supporting v3 self-signed certificates?

3. I haven't done due diligence in looking through the JCE, but was
hoping you could shortcut my reading by answering a question. Does JCE
solely support external crypto libraries, or do you have a default
encryption implementation. If you do, what of the following do you
offer default implementations for:

DH
RSA
DES/DES-EDE3
RC2/5

If you don't:
* do you have plans to offer a default implementation in the
future?
* within what timeframe?
* do you know which vendors have JCE compliant encryption
software?

And again, the plans for support of S/MIME?

Thanks for your time,
------------------------
Karen Rosenthal
Technical Architect
<<...>>
1600 Riviera Avenue
Walnut Creek, CA 94596
Phone: (925) 941-4385
E-mail: karen.rosenthal@commerceone.com
Web Page: www.commerceone.com