| |||||||||||||
Java cryptography and free distributionsJava cryptography and free distributionsPosted Mar 15, 2007 11:33 UTC (Thu) by gouyou (guest, #30290)Parent article: Java cryptography and free distributions
IIRC the user could also add a certificate to the trusted certificate store used by Java, which IMHO is the correct solution.
(Log in to post comments)
Java cryptography and free distributions Posted Mar 15, 2007 13:32 UTC (Thu) by nim-nim (subscriber, #34454) [Link] And what happens when he updates his sun-provided jvm?
Java cryptography and free distributions Posted Mar 15, 2007 15:20 UTC (Thu) by gouyou (guest, #30290) [Link] There is a per user configuration file for setting this things, but I think the problem is more general:
Java cryptography and free distributions Posted Mar 15, 2007 15:30 UTC (Thu) by nim-nim (subscriber, #34454) [Link] A distribution handles these things fine - it's not monolithic
JVMs as packaged by SUN however are. All their "config" parts are reinitialized on updates
Java cryptography and free distributions Posted Mar 15, 2007 16:50 UTC (Thu) by nosnilmot (subscriber, #746) [Link] JCE signing certificates are not issued by CAs in, or verified against, the conventional trusted certificate store, and end users do not have any way to extend the list of trusted authorities for JCE provider certificate verification.
Java cryptography and free distributions Posted Mar 15, 2007 17:30 UTC (Thu) by gouyou (guest, #30290) [Link] My bad after doing a bit of research on JCE, I found a nice article explaining the situation, and it looks like a clear case of software DRM: Who Trusts the Trustees?.
|
|||||||||||||