HTTPsec-Java - FAQ

1. Is there a test server I can use?
2. Which JCE Provider should I use?

---

1. Is there a test server I can use?

   Yes, here: http://server3.clinksystems.com:8080/httpsec/

index

2. Which Java Cryptography Extension ( JCE ) Provider should I use?

   You can use any single provider, or combination of providers which provides the services and algorithms that HTTPsec-Java requires.

   These are the default service/algorithm names:

   MessageDigest:	SHA-256, HmacSHA256
   Cipher:	RSA/NONE/OAEPWithSHA1AndMGF1Padding, AES/ECB/NoPadding, AES/CBC/PKCS5Padding
   KeyPairGenerator:	DiffieHellman, RSA
   KeyFactory:	RSA
   KeyAgreement:	DiffieHellman
   CertificateFactory:	X.509
   Signature:	SHA256withRSAandMGF1
   SecureRandom	SHA1PRNG

   See the package docs for instructions to configure your JCE and HTTPsec-Java.

   There is a list of JCE providers available from Sun.

   Providers We Have Tested

   • The Legion of the Bouncy Castle produce a free ( beer and speech ) provider that supports all the services / algorithms used by HTTPsec-Java. We used this provider to develop HTTPsec-Java.
   • RSA Security produce a provider which we have tested successfully.

     This provider does not provide the required Signature algorithm.

     You need to add the lines:

     PublicKeyCipher = RSA/ECB/OAEPWithSHA1AndMGF1Padding
PublicKeyCipher.provider = JsafeJCE

     to Primitives.conf.