[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [iaik-ssl] iSaSiLkLight & client side firewalls

The only method that would work in all environments would be to tunnel
SSL on top of HTTP. We did a prototype proof-of-concept implementation
once but that was never completed and is not part of any of our products
because we only receive requests for it only once after every other
month. The current API structure also does not allow such a feature to be
added by an application with the exception of iSaSiLk 3.0beta1.

If and when we will implement the SSL-over-HTTP tunnel depends on
customer requests, especially from paying customers. At the moment it is
on our timetable.

Another solution for SSL from behind a firewall would be to use the
user's standard SSL proxy and connect through it just like the browser
does. In that case the applet would need to obtain the proxy settings
somehow, acquire the connect privilege for it from the SecurityManager,
and connect through it.


 Andreas Sterbenz              mailto:Andreas.Sterbenz@iaik.tu-graz.ac.at

-----Ursprüngliche Nachricht-----
Von: Andrew Roughan <andrew.roughan@ficsgrp.com>
An: <iaik-ssl@iaik.tu-graz.ac.at>
Gesendet: Montag, 06. September 1999 07:25
Betreff: [iaik-ssl] iSaSiLkLight & client side firewalls

> I would like to develop a Java applet which can establish an SSL
> with a server from behind a client side firewall.
> The evaluation version of iSaSiLkLight which I have downloaded lists
> as a known issue and suggests that I contact IAIK to express my need.
> Has this functionality been implemented since the evaluation version of
> iSaSiLkLight was released? If so, how do I obtain a copy?
> If not, is there a way that I can do this myself?
> I am familiar with both HTTP and TCP tunnelling mechanisms, but I am
> familiar with SSL at all.
> Thanks,
> Andrew Roughan
> FICS Australia