[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [iaik-ssl] help on SampleClientTrustDecider



As mentioned before use of TrustDeciders is discouraged in favor of the
new API. In particular for client certificates you only need to specify
them, the library will make the selection of certificates acceptable to
the server all by itself. See

http://jcewww.iaik.at/iSaSiLk/doc/javadoc/iaik/security/ssl/SSLClientCont
ext.html

 Andreas Sterbenz              mailto:Andreas.Sterbenz@iaik.at


-----Ursprüngliche Nachricht-----
Von: Conturbia Riccardo <s75918@dilbert.polito.it>
An: <iaik-ssl@iaik.tu-graz.ac.at>
Gesendet: Dienstag, 04. Jänner 2000 14:23
Betreff: [iaik-ssl] help on SampleClientTrustDecider


> Hi, I have two questions about SampleClientTrustDecider:
>
> 1) If I correctly understand, isTrustedPeer verify that the server
> certificate chain is consistent. But what if I want to accept
> connections only with servers certified by a particular set of CA?
>
> 2) In SampleClientTrustDecider different kind of certificates are
> supported (rsa, dh, etc...). If I have only one type of certificate,
can
> I ignore the parameter certificateTypes in getCertificate method?
>
> Thank you!
>
> Riccardo Conturbia
> --
> Mailinglist-archive at
http://jcewww.iaik.at/mailarchive/iaik-ssl/sslthreads.html
>
> To unsubscribe send an email to listserv@iaik.at with the folowing
content: UNSUBSCRIBE iaik-ssl
>
>
>


smime.p7s