sun.security.* And DSA CERTS.

Arjun Khanna (arjun@jump.net)
Thu, 24 Sep 1998 08:36:13 -0500

NOTE: pl. cc: me on the reply. I did scan the java-security mail archives
before posting here.
Hi Folks:

I would like to use the client side of the sun.ssl engine (in ssl.jar)
which I downloaded with the HotJava browser (1.1.5).

My requirement is to use DSS with DSA certificates, so a cipher like
EDH-DSS-DES-CBC3-SHA is what I am looking for. In that light I have the
following questions:

a.) I plan to generate the DSA certificates using SSLEAY0.9.0b. Does any
one know if the ssl implementation from SUN will support these certificates
or not? My server is a c/c++ server that will use SSLEAY for its SSL
engine. I know folk who have interoperated with SSLeay using DH_anon.

b.) Although the DH_anon is simple to set up using SSLSocket, I am not sure
how to set up a SSL session using DSA certificates using
EDH-DSS-DES-CBC3-SHA, or EDH-DSS-DES-CBC-SHA

My difficulty is that I dont know how to set up the client DSA certs in the
SSL session. I looked at the JDC- there is no documentation, examples for
this excepting the javadoc for sun.security, sun.security.ssl. I could not
find what I was looking for in there.

A code sample, some documentation, A relevant URL, just about anything
would be great!

I specifically want to stay from RC* and MD* based suites (ie., the RSA
ciphers, digests)

Thank you in advance.
-Arjun
mailto:arjun@jump.net