You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tomcat.apache.org by bu...@apache.org on 2005/10/11 12:44:23 UTC

DO NOT REPLY [Bug 37018] New: - Document how to use tomcat-SSL with a pkcs11 token

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=37018>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=37018

           Summary: Document how to use tomcat-SSL with a pkcs11 token
           Product: Tomcat 5
           Version: 5.5.9
          Platform: Other
               URL: http://java.sun.com/j2se/1.5.0/docs/guide/security/p11gu
                    ide.html
        OS/Version: other
            Status: NEW
          Severity: enhancement
          Priority: P2
         Component: Connector:Coyote
        AssignedTo: tomcat-dev@jakarta.apache.org
        ReportedBy: hauser@acm.org


Since jdk1.5 has a sun.security.pkcs11.SunPKCS11 implementing
java.security.Provider, it should be possible to no longer store private keys on
the server computer's harddisk, but on a USB token or alike (being willing to
accept that SSL may become very slow...)
Others appear to have asked for this 
http://marc.theaimsgroup.com/?l=tomcat-user&m=111471470228516&w=2

more also in http://forum.java.sun.com/thread.jspa?threadID=256018&messageID=3838346

-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org