Can't create an object of cipher for RSA

Thread view:

Peter Zentzis - 13 Dec 2003 09:58 GMT

Hello,
I use the Cryptix provider. I want to create an object in order to
decrypt/encrypt with RSA. Crptix32 provides RSA, but I can't use the
getInstance-method the create an RSA-Cipher.
The code line: Cipher rsaCipher=Cipher.getInstance("RSA",p);// p is the
provider Cryptix
The error message: java.lang.SecurityException: The provider Cryptix may not
be signed by a trusted party
I don't know what to do.. Any suggestions?

Best regards

Peter

Reply to this Message

JK - 16 Dec 2003 09:31 GMT

Since JDK 1.4 (I think), Sun JCE requires providers to be signed with a
private key that belongs to a certificate issued by Sun. When you add
another provider to the security manager Sun JCE and the provider
authenticate each other that way.

The disadvantage of Cryptix is, that it is not signed with an
appropriate certificate from Sun. That way, it only works outside the
sandbox, i.e. as an application without the java.lang.Security
instantiated.

Alternatives:
- use another provider, such as BouncyCastle or SunRsaSign, with proper
certificates issued by Sun
- use a clean-room implementation of the JCE, like the one from
BouncyCastle, that does not check signatures on JCE providers.
- keep outside the sandbox. Does not work for applets.

Regards
JK.

> Hello,
> I use the Cryptix provider. I want to create an object in order to
[quoted text clipped - 9 lines]
>
> Peter

Reply to this Message

Can't create an object of cipher for RSA

Free Magazines