Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-6273877

Better support for NSS keystore

    Details

      Description

      From http://jplan.sfbay/feature/076 :

      Description
      Network Security Services (NSS) is the library that is used for all security functions in Mozilla as well as by all native components of the JES stack. Via the PKCS#11 support in Tiger, it is already possible the access the NSS keystore. This feature intends to address a few missing pieces:

       . NSS stores configuration information about its PKCS#11 modules in its secmod.db file, which we currently do not understand. By accessing this information we could reduce/eliminate the need for manual configuration.

       . NSS uses non-standard attributes to mark certificates as trusted. We should add support for them.

      Motivation
      AppServer and Access Manager have expressed their unhappiness about the current state of affairs and the extra work it causes them.

      Plugin decided to use the JSS library to access NSS rather than the JDK's PKCS#11 support because of the configuration issue. However, JSS is receiving little attention in Sun now and therefore may not be a viable long term solution.

      ###@###.### 2005-05-20 18:41:46 GMT

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                andreas Andreas Sterbenz
                Reporter:
                andreas Andreas Sterbenz
              • Votes:
                0 Vote for this issue
                Watchers:
                0 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:
                  Imported:
                  Indexed: