ssh (was Re: java Digest 5 Sep 2003 15:03:44 -0000 Issue 1283)

Sat Sep 6 10:57:00 GMT 2003

Erik Poupaert wrote:
>>I?m currently writing a client-server applications which needs to be secure.
>>I?ve found several working ssl implementations for java, but some of 
>>them rely on a thing calles "JCE".
>>Is JCE already in GCJ included (since which release of GCJ?)?
>>Are there already working javax.crypto classes?
>>> By the way, have you considered tunneling traffic over ssh?
>> I mean, it is considered very secure. It is easy to set up. It doesn't require you to
> modify the original, unsecured application. You would delegate cpu intensive tasks
> (encrypting/decrypting) to higly optimized native code.
>> It doesn't require going to the certificate rigmarole, since it uses a very
> defendable system of avoiding the re-exchange of keys.

I looked at this option, and it seems good on that level (not having to
worry about the CA), but the APIs i've seen (there are at least two
registered projects at SourceForge.net seem to require that you keep a
shell connection open, which would not be appropriate for my application.
My need is for an authenticated, encrypted client-server connection
without any requirement for X.509 infrastructure. Is there a way to use
JSSE or something similar in non-SSL mode?
-- 
Paul
http://paulgear.webhop.net
A: Because we read from top to bottom, left to right.
Q: Why should i start my reply below the quoted text?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://gcc.gnu.org/pipermail/java/attachments/20030906/3dc5c491/attachment.sig>