Yes, and they do work just fine. You need to update the java.security properties file after you install the 3 .jar files in the /lib/ext folder. Install.txt step 4a has the appropriate instructions.
You will also need appropriate digital certificates if you are going to create a secure connection with anyone else (or yourself for that matter). Sun does not supply these, someone like Thawt or Verisign does, ($$$). Thawt does have a web page where you can create a free evaluation certificate for testing though.
It takes quite awhile for the handshake and socket connection to take in secure mode. 30-60 sec is not uncommon in the application I was coding. If your socket factory and secure socket creation code looks just like the examples on the Sun site powerpoint JSSE slides you should be good to go once you have certificates in place. You don't have to authenticate in both directions if you don't want to, that is all application specific to your situation, but without something to authenticate the secure socket won't happen.
Also the stream in a socket does not really exist until the first actual data packet is transferred. The hand-shaking doesn't occur until then even though there has already been preliminary communication. So you can get exceptions on the stream significantly after you thought you had established the socket connection. Use a startHandshake to force an immediate full fledged connection. It will make troubleshooting and exception catching much easier.
[ 08-20-2001: Message edited by: AirSluf ]
Top
