RSA Implementation for SunJCE Provider
Hello there!
I just would like to inquire if there are plans/news for the sun developers to include the RSA Algorithm as part of the cryptographic services available in the pre-installed SunJCE Provider? If so, when?
Thanks.
Regards,
Ronron
Which RSA algorithm are you looking for? BTW Sun has 4
JCE providers: SUN, SunJCE, SunRsaSign, SunJSSE.I am referring to the SunJCE Provider, which is
already included in the latest Java 2 SDK, v 1.4
release. Those 4 providers are from JDK 1.4
I am looking for the RSA Algorithm for
encryption/decryption of data. Because I believe that
it would be very helpful when the SunJCE would include
the implementation of that algorithm since the
provider had been pre-installed in the latest Java 2
SDK.
Do you have any idea?I believe they still don't want to have any issues with US export restrictions, especially with that little case when someone need to use RSA encryption. So, they let you to use any 3rd part JCE provider. And there is such a good one for free. Look at the BouncyCastle.
Similar Messages
-
SunJCE Provider doesn't support RSA for all version of JCE?
Folks,
Have browsed through the forum and it seems that the JCE provider bundled with JCE and JDK1.4+ do nothing on RSA. Can I make this conclusion?But it seems the SunJCE doesn't provide the RSA (and
AES, who knows what else is missing) encryption and
decryption functions. Can anyone list what is missing
from the SunJCE? Also, from the forum, many have
pointed to this bounty castle provider. Can any of
you guys who are familiar with this provider give us
the procedure of installation? Thanks.I wouldn't use the term 'missing' here. Sun provides some basic cryptographic functions and that all. If you want more, get another provider. Sun will never be able to provide every possible algorithm. That's why they have implemented the external provider option. So no, I cannot list what is missing.
I can tell you that other providers, for instance BouncyCastle offer much more cryptographic functions. Installation is very easy. Just download the .jar and put it in your <java>\jre\lib\ext directory. After that you can use it in you programs with the following code:
Provider prov = new org.bouncycastle.jce.provider.BouncyCastleProvider();
Security.addProvider(prov);You can also install it so that you don't have use this code in every program that uses the provider. How this is accomplished, can be found in the install manual from BouncyCastle. -
Dear All
I am getting the below error while activating the sap Fiori applications
Task Facade not implemented for provider. [/IWBEP/CX_MGW_TECH_EXCEPTION] (error).
I have applied all suggestions in my new fiori system from Masayuki Sekihara posted on his post.
but still I am getting same error message.
I got below error message.
1) If I selected a EC6FIORI system alias to ZTASKPROCESSING services then i got below error message.
Task Facade not implemented for provider.
Task Facade not implemented for provider. [/IWBEP/CX_MGW_TECH_EXCEPTION] (error).
2) some time I got different error message if I selected FIORI system alias to ZTASKPROCESSING.
I have shared below my system Support Package level and all configurations.
Component
Release
SP-Level
Support Package
Short description of comment
SAP_BASIS
740
4
SAPKB74004
SAP Basis Component
SAP_ABA
740
4
SAPKA74004
Cross-Application Component
SAP_GWFND
740
6
SAPK-74006INSAPGWFND
SAP Gateway Foundation
SAP_UI
740
7
SAPK-74007INSAPUI
User Interface Technology
PI_BASIS
740
4
SAPK-74004INPIBASIS
Basis Plug-In
ST-PI
2008_1_700
8
SAPKITLRD8
SAP Solution Tools Plug-In
SAP_BW
740
4
SAPKW74004
SAP Business Warehouse
IW_PGW
100
5
SAPK-10005INIWPGW
Process Gateway
MDG_FND
747
2
SAPK-74702INMDGFND
MDG Foundation
SAP_AP
700
30
SAPKNA7030
SAP Application Platform
SAP_BS_FND
747
2
SAPK-74702INSAPBSFND
SAP Business Suite Foundation
WEBCUIF
747
2
SAPK-74702INWEBCUIF
SAP Web UI Framework
MDG_APPL
617
2
SAPK-61702INMDGAPPL
MDG Applications
SAP_APPL
617
2
SAPKH61702
Logistics and Accounting
SAP_FIN
617
2
SAPK-61702INSAPFIN
SAP_FIN
SAP_HR
604
66
SAPKE60466
Human Resources
SAP_HRCAR
604
66
SAPK-60466INSAPHRCAR
Sub component SAP_HRCAR of SAP_HR
SAP_HRCAT
604
66
SAPK-60466INSAPHRCAT
Sub component SAP_HRCAT of SAP_HR
SAP_HRCAU
604
66
SAPK-60466INSAPHRCAU
Sub component SAP_HRCAU of SAP_HR
SAP_HRCBE
604
66
SAPK-60466INSAPHRCBE
Sub component SAP_HRCBE of SAP_HR
SAP_HRCBR
604
66
SAPK-60466INSAPHRCBR
Sub component SAP_HRCBR of SAP_HR
SAP_HRCCA
604
66
SAPK-60466INSAPHRCCA
Sub component SAP_HRCCA of SAP_HR
SAP_HRCCH
604
66
SAPK-60466INSAPHRCCH
Sub component SAP_HRCCH of SAP_HR
SAP_HRCCL
604
66
SAPK-60466INSAPHRCCL
Sub component SAP_HRCCL of SAP_HR
SAP_HRCCN
604
66
SAPK-60466INSAPHRCCN
Sub component SAP_HRCCN of SAP_HR
SAP_HRCDE
604
66
SAPK-60466INSAPHRCDE
Sub component SAP_HRCDE of SAP_HR
SAP_HRCDK
604
66
SAPK-60466INSAPHRCDK
Sub component SAP_HRCDK of SAP_HR
SAP_HRCES
604
66
SAPK-60466INSAPHRCES
Sub component SAP_HRCES of SAP_HR
SAP_HRCFI
604
66
SAPK-60466INSAPHRCFI
Sub component SAP_HRCFI of SAP_HR
SAP_HRCFR
604
66
SAPK-60466INSAPHRCFR
Sub component SAP_HRCFR of SAP_HR
SAP_HRCGB
604
66
SAPK-60466INSAPHRCGB
Sub component SAP_HRCGB of SAP_HR
SAP_HRCHK
604
66
SAPK-60466INSAPHRCHK
Sub component SAP_HRCHK of SAP_HR
SAP_HRCID
604
66
SAPK-60466INSAPHRCID
Sub component SAP_HRCID of SAP_HR
SAP_HRCIE
604
66
SAPK-60466INSAPHRCIE
Sub component SAP_HRCIE of SAP_HR
SAP_HRCIN
604
66
SAPK-60466INSAPHRCIN
Sub component SAP_HRCIN of SAP_HR
SAP_HRCIT
604
66
SAPK-60466INSAPHRCIT
Sub component SAP_HRCIT of SAP_HR
SAP_HRCJP
604
66
SAPK-60466INSAPHRCJP
Sub component SAP_HRCJP of SAP_HR
SAP_HRCKR
604
66
SAPK-60466INSAPHRCKR
Sub component SAP_HRCKR of SAP_HR
SAP_HRCKW
604
66
SAPK-60466INSAPHRCKW
Sub component SAP_HRCKW of SAP_HR
SAP_HRCMX
604
66
SAPK-60466INSAPHRCMX
Sub component SAP_HRCMX of SAP_HR
SAP_HRCMY
604
66
SAPK-60466INSAPHRCMY
Sub component SAP_HRCMY of SAP_HR
SAP_HRCNL
604
66
SAPK-60466INSAPHRCNL
Sub component SAP_HRCNL of SAP_HR
SAP_HRCNO
604
66
SAPK-60466INSAPHRCNO
Sub component SAP_HRCNO of SAP_HR
SAP_HRCNZ
604
66
SAPK-60466INSAPHRCNZ
Sub component SAP_HRCNZ of SAP_HR
SAP_HRCPH
604
66
SAPK-60466INSAPHRCPH
Sub component SAP_HRCPH of SAP_HR
SAP_HRCPT
604
66
SAPK-60466INSAPHRCPT
Sub component SAP_HRCPT of SAP_HR
SAP_HRCQA
604
66
SAPK-60466INSAPHRCQA
Sub component SAP_HRCQA of SAP_HR
SAP_HRCRU
604
66
SAPK-60466INSAPHRCRU
Sub component SAP_HRCRU of SAP_HR
SAP_HRCSE
604
66
SAPK-60466INSAPHRCSE
Sub component SAP_HRCSE of SAP_HR
SAP_HRCSG
604
66
SAPK-60466INSAPHRCSG
Sub component SAP_HRCSG of SAP_HR
SAP_HRCTH
604
66
SAPK-60466INSAPHRCTH
Sub component SAP_HRCTH of SAP_HR
SAP_HRCTW
604
66
SAPK-60466INSAPHRCTW
Sub component SAP_HRCTW of SAP_HR
SAP_HRCUN
604
66
SAPK-60466INSAPHRCUN
Sub component SAP_HRCUN of SAP_HR
SAP_HRCUS
604
66
SAPK-60466INSAPHRCUS
Sub component SAP_HRCUS of SAP_HR
SAP_HRCVE
604
66
SAPK-60466INSAPHRCVE
Sub component SAP_HRCVE of SAP_HR
SAP_HRCZA
604
66
SAPK-60466INSAPHRCZA
Sub component SAP_HRCZA of SAP_HR
SAP_HRGXX
604
66
SAPK-60466INSAPHRGXX
Sub component SAP_HRGXX of SAP_HR
SAP_HRRXX
604
66
SAPK-60466INSAPHRRXX
Sub component SAP_HRRXX of SAP_HR
EA-IPPE
400
24
SAPKGPID24
SAP iPPE
EA-APPL
617
2
SAPK-61702INEAAPPL
SAP Enterprise Extension PLM, SCM, Financials
EA-DFPS
600
24
SAPKGPDD24
SAP Enterprise Extension Defense Forces & Public Security
EA-FIN
617
2
SAPK-61702INEAFIN
EA-FIN
EA-FINSERV
600
25
SAPKGPFD25
SAP Enterprise Extension Financial Services
EA-GLTRADE
600
24
SAPKGPGD24
SAP Enterprise Extension Global Trade
EA-HR
607
17
SAPK-60717INEAHR
SAP Enterprise Extension HR
EA-HRCAR
607
17
SAPK-60717INEAHRCAR
Sub component EA-HRCAR of EA-HR
EA-HRCAT
607
17
SAPK-60717INEAHRCAT
Sub component EA-HRCAT of EA-HR
EA-HRCAU
607
17
SAPK-60717INEAHRCAU
Sub component EA-HRCAU of EA-HR
EA-HRCBE
607
17
SAPK-60717INEAHRCBE
Sub component EA-HRCBE of EA-HR
EA-HRCBR
607
17
SAPK-60717INEAHRCBR
Sub component EA-HRCBR of EA-HR
EA-HRCCA
607
17
SAPK-60717INEAHRCCA
Sub component EA-HRCCA of EA-HR
EA-HRCCH
607
17
SAPK-60717INEAHRCCH
Sub component EA-HRCCH of EA-HR
EA-HRCCL
607
17
SAPK-60717INEAHRCCL
Sub component EA-HRCCL of EA-HR
EA-HRCCN
607
17
SAPK-60717INEAHRCCN
Sub component EA-HRCCN of EA-HR
EA-HRCDE
607
17
SAPK-60717INEAHRCDE
Sub component EA-HRCDE of EA-HR
EA-HRCDK
607
17
SAPK-60717INEAHRCDK
Sub component EA-HRCDK of EA-HR
EA-HRCES
607
17
SAPK-60717INEAHRCES
Sub component EA-HRCES of EA-HR
EA-HRCFI
607
17
SAPK-60717INEAHRCFI
Sub component EA-HRCFI of EA-HR
EA-HRCFR
607
17
SAPK-60717INEAHRCFR
Sub component EA-HRCFR of EA-HR
EA-HRCGB
607
17
SAPK-60717INEAHRCGB
Sub component EA-HRCGB of EA-HR
EA-HRCHK
607
17
SAPK-60717INEAHRCHK
Sub component EA-HRCHK of EA-HR
EA-HRCID
607
17
SAPK-60717INEAHRCID
Sub component EA-HRCID of EA-HR
EA-HRCIE
607
17
SAPK-60717INEAHRCIE
Sub component EA-HRCIE of EA-HR
EA-HRCIN
607
17
SAPK-60717INEAHRCIN
Sub component EA-HRCIN of EA-HR
EA-HRCIT
607
17
SAPK-60717INEAHRCIT
Sub component EA-HRCIT of EA-HR
EA-HRCJP
607
17
SAPK-60717INEAHRCJP
Sub component EA-HRCJP of EA-HR
EA-HRCKR
607
17
SAPK-60717INEAHRCKR
Sub component EA-HRCKR of EA-HR
EA-HRCKW
607
17
SAPK-60717INEAHRCKW
Sub component EA-HRCKW of EA-HR
EA-HRCMX
607
17
SAPK-60717INEAHRCMX
Sub component EA-HRCMX of EA-HR
EA-HRCMY
607
17
SAPK-60717INEAHRCMY
Sub component EA-HRCMY of EA-HR
EA-HRCNL
607
17
SAPK-60717INEAHRCNL
Sub component EA-HRCNL of EA-HR
EA-HRCNO
607
17
SAPK-60717INEAHRCNO
Sub component EA-HRCNO of EA-HR
EA-HRCNZ
607
17
SAPK-60717INEAHRCNZ
Sub component EA-HRCNZ of EA-HR
EA-HRCPH
607
17
SAPK-60717INEAHRCPH
Sub component EA-HRCPH of EA-HR
EA-HRCPT
607
17
SAPK-60717INEAHRCPT
Sub component EA-HRCPT of EA-HR
EA-HRCQA
607
17
SAPK-60717INEAHRCQA
Sub component EA-HRCQA of EA-HR
EA-HRCRU
607
17
SAPK-60717INEAHRCRU
Sub component EA-HRCRU of EA-HR
EA-HRCSE
607
17
SAPK-60717INEAHRCSE
Sub component EA-HRCSE of EA-HR
EA-HRCSG
607
17
SAPK-60717INEAHRCSG
Sub component EA-HRCSG of EA-HR
EA-HRCTH
607
17
SAPK-60717INEAHRCTH
Sub component EA-HRCTH of EA-HR
EA-HRCTW
607
17
SAPK-60717INEAHRCTW
Sub component EA-HRCTW of EA-HR
EA-HRCUN
607
17
SAPK-60717INEAHRCUN
Sub component EA-HRCUN of EA-HR
EA-HRCUS
607
17
SAPK-60717INEAHRCUS
Sub component EA-HRCUS of EA-HR
EA-HRCVE
607
17
SAPK-60717INEAHRCVE
Sub component EA-HRCVE of EA-HR
EA-HRCZA
607
17
SAPK-60717INEAHRCZA
Sub component EA-HRCZA of EA-HR
EA-HRGXX
607
17
SAPK-60717INEAHRGXX
Sub component EA-HRGXX of EA-HR
EA-HRRXX
607
17
SAPK-60717INEAHRRXX
Sub component EA-HRRXX of EA-HR
EA-PS
600
24
SAPKGPPD24
SAP Enterprise Extension Public Services
EA-RETAIL
600
24
SAPKGPRD24
SAP Enterprise Extension Retail
FINBASIS
600
24
SAPK-60024INFINBASIS
Fin. Basis
ECC-DIMP
600
23
SAPK-60023INECCDIMP
DIMP
ERECRUIT
600
24
SAPK-60024INERECRUIT
E-Recruiting
FI-CA
600
23
SAPK-60023INFICA
FI-CA
FI-CAX
600
23
SAPK-60023INFICAX
FI-CA Extended
HR-CEE
110_604
52
SAPK-60452INHRCEE
HR country version for CEE countries
HR-CEECBG
110_604
52
SAPK-60452INHRCEECBG
Sub component HR-CEECBG of HR-CEE
HR-CEECCO
110_604
52
SAPK-60452INHRCEECCO
Sub component HR-CEECCO of HR-CEE
HR-CEECCZ
110_604
52
SAPK-60452INHRCEECCZ
Sub component HR-CEECCZ of HR-CEE
HR-CEECGR
110_604
52
SAPK-60452INHRCEECGR
Sub component HR-CEECGR of HR-CEE
HR-CEECHR
110_604
52
SAPK-60452INHRCEECHR
Sub component HR-CEECHR of HR-CEE
HR-CEECHU
110_604
52
SAPK-60452INHRCEECHU
Sub component HR-CEECHU of HR-CEE
HR-CEECPL
110_604
52
SAPK-60452INHRCEECPL
Sub component HR-CEECPL of HR-CEE
HR-CEECRO
110_604
52
SAPK-60452INHRCEECRO
Sub component HR-CEECRO of HR-CEE
HR-CEECSI
110_604
52
SAPK-60452INHRCEECSI
Sub component HR-CEECSI of HR-CEE
HR-CEECSK
110_604
52
SAPK-60452INHRCEECSK
Sub component HR-CEECSK of HR-CEE
HR-CEECTR
110_604
52
SAPK-60452INHRCEECTR
Sub component HR-CEECTR of HR-CEE
HR-CEECUA
110_604
52
SAPK-60452INHRCEECUA
Sub component HR-CEECUA of HR-CEE
HR-CEEGXX
110_604
0
Sub component HR-CEEGXX of HR-CEE
HR-CEERXX
110_604
0
Sub component HR-CEERXX of HR-CEE
INSURANCE
600
23
SAPK-60023ININSURANC
SAP Insurance
IS-CWM
600
23
SAPK-60023INISCWM
Industry Solution Catch Weight Management
IS-H
600
34
SAPK-60034INISH
SAP Healthcare
IS-M
600
23
SAPK-60023INISM
SAP MEDIA
IS-OIL
600
23
SAPK-60023INISOIL
IS-OIL
IS-PS-CA
600
23
SAPK-60023INISPSCA
IS-PUBLIC SECTOR CONTRACT ACCOUNTING
IS-UT
600
23
SAPK-60023INISUT
SAP Utilities/Telecommunication
LSOFE
600
24
SAPK-60024INLSOFE
SAP Learning Solution Front-End
SEM-BW
600
24
SAPKGS6024
SEM-BW: Strategic Enterprise Management
GBAPP002
600
4
SAPK-60004INGBAPP002
GBAPP002
GBHCM002
600
11
SAPK-60011INGBHCM002
HCM Employee Requests (Leave)
GBHCM003
600
9
SAPK-60009INGBHCM003
HCM Manager Approvals (Time, Training, L
SRA002
600
3
SAPK-60003INSRA002
Time Recording OData Integration Compone
SRA010
600
3
SAPK-60003INSRA010
Staffing List OData Integration Componen
SRA017
600
3
SAPK-60003INSRA017
Create Purchase Order OData Integration
SRA018
600
3
SAPK-60003INSRA018
Purchase Order Status Tracking OData Int
UIAPP001
100
4
SAPK-10004INUIAPP001
UIAPP001 100: Add-On Installation
UIAPP002
100
3
SAPK-10003INUIAPP002
UIAPP002 100: Add-On Installation
UIGIB001
100
4
SAPK-10004INUIGIB001
UIGIB001 100: Add-On Installation
UIHCM002
100
4
SAPK-10004INUIHCM002
UIHCM002 100: Add-On Installation
UIHCM003
100
4
SAPK-10004INUIHCM003
UIHCM003 100: Add-On Installation
UISRA002
100
3
SAPK-10003INUISRA002
HTML5 Time Recording
UISRA010
100
3
SAPK-10003INUISRA010
HTML5 Staffing List
UISRA017
100
3
SAPK-10003INUISRA017
HTML5 Create Order
UISRA018
100
3
SAPK-10003INUISRA018
HTML5 Order Status Tracking
please help me to resolve that issue
Regards
Pankaj KambleHi Team,
i have created new post.
SAP Fiori getting error message Check the URL parameters and the scenario definition. To check the scenario definition.
Scenario definition configuration screen short.
2) Also getting bellow error message
Property TaskDefinitionID not found in type WorkflowTask
Did not find error details
{"error":{"code":"005056A509B11EE1B9A8FEA8DE87F78E","message":{"lang":"en","value":"Property TaskDefinitionID not found in type WorkflowTask"},"innererror":{"transactionid":"E6A9CEE388D3F1EC940400155DC8D41B","timestamp":"20140428075136.7780000","Error_Resolution":{"SAP_Transaction":"Run transaction /IWFND/ERROR_LOG on SAP NW Gateway hub system and search for entries with the timestamp above for more details","SAP_Note":"See SAP Note 1797736 for error analysis (https://service.sap.com/sap/support/notes/1797736)"}}}}
Regards
Pankaj Kamble -
My Inbox - Task Facade not implemented for provider
Hi Fiori experts,
I have done the steps necessary to configure the "My Inbox" app.
1) Assign the service to the Backend
2) Activate the app in sicf
3) Assign the role catalog
4) Create the group and add the My Inbox app
But the thing is that I am getting the following error with the service:
sap/opu/odata/IWPGW/TASKPROCESSING;v=2;mo/TaskCollection/$count/?$filter=Status%2…
<errordetails>
<errordetail>
<code>/IWBEP/CX_MGW_TECH_EXCEPTION</code>
<message>Task Facade not implemented for provider.</message>
<propertyref/>
<severity>error</severity>
</errordetail>
</errordetails>
Do you have any idea which is the reason of the error?
Masayuki Sekihara
I saw your post for configuring the app My Inbox, but in your case is working ok. Do you what does it mean the error I am getting?
Which is the cause of the error? How can I resolve it?
Thanks,
EmanuelHi Tejas,
Thank you for your help.
My system alias was incorrect.
I correct it and assign the software version /IWPGW/BWF.
Note: I am working on an embedded environment.
But now I am getting another error: "Data provider implmentation 'ZTM_TGW_SVC_MODEL_0002_BE" does not exist
I have checked this table, ans saw that the Default checkbox is not set for the ZTASKPROCESSING OData service.
Is this necessary?
Can be the issue related with the version of the components I have installed in the system:
Do you have any idea how to solve this issue?
Best Regards,
Emanuel -
Does Sun provide an implementation for the PolicyManager interface (OMG)
I need an interface through which I can set Policies and view the current Policy overrides. Doesn't the Java IDL provide a default implementation for the PolicyManager interface? (on the lines of what is available in VisiBroker and JacORB)
Also want to know the values that need to be set for protocol_type if I need to use IIOP and SSLIIOP profocolsIt also makes a difference whether RMI/IIOP or Java IDL is used. Considering RMI/IIOP, there is still many work to be done. See, for example, bug 6239444, which came up when testing interoperability between Sun's and IBM's ORBs. I was told by experts that this problem came up due to the ambiguity of the RMI/IIOP specification. Java IDL should work better there.
However, the discussion seems to become off-topic :-/, I am not sure that the original question was about interoperability.
Regards,
Miran -
Lightweight RSA implementation (lighter than BouncyCastle)?
I wonder if by chance there is a more lightweight implementation of RSA for MIDP than the one provided by BouncyCastle? I managed to use the BouncyCastle classes, but RSA+AES encryption together make up for more than 16KB of the jar-File. The bulk of it seems to stem from the BigInteger class. Perhaps by implementing only the operations that are relevant to RSA it would be possible to arrive at a shorter solution?
If anybody knows of a smaller implementation, it would be great to hear about it!
Many thanks in advance!I've done this helping another ThoughtWorker migrate from Cryptix to BC. It's not an easy task, especially seeing that Cryptix did some really "non-standard" stuff early on.
It does work (or at least I believe it does work, as I haven't been asked for assistance recently ;-) ), and you should be able to just convert the keys by using the bits you need.
The other thing that's worth being careful about is that the Cryptix code allowed data encrypted with the RSA keys to be of any mode, including some really busted padding called "ZerosAndOnes". (Don't ask, it's too stupid for words).
Make sure your encrypted data can be successfully decrypted, and what the various modes are, because if you convert all your code, then you might have difficulties later on trying to decrypt it.
The first thing I did was to create some code that was a compatibility mode and used the light-weight API's to deal with the transformations. After all the Cryptix code has been removed, it will be a trivial matter to implement the bits that are really needed using the JCE code (if desired).
Why use the lw-api ? Well, I needed to create a new padding, and doing that with the JCE (and then resigning it) was going to be a real pain. And, all the JCE code uses the LW code underneath anyway, so I knew there wasn't going to be a compatibility problem.
So, after all that waffle, it should work, but just watch out for how people used the Cryptix RSA keys for encrypting the data. Cryptix didn't check if people were doing dumb things, and that may be the case.
Cheers,
-- jon -
Is RSA supported by SunJCE?
Please, this may sound too basic, but I need to know from you whether SunJCE provider includes the RSA algorithm!
Anyway, it is surprising that Java has so little
support for public encryption that lies at the heart
of cryptology, and security in general. Thanks for
your help!It's not at all surprising if you know anything about US Export regulations. Those have been recently relaxed - which is why RSA is available as a Cipher now in 1.5.
The standard Java library has some of the best encryption support I've seen, built in. There are Providers available, for free, that give you access to nearly every algorithm I can think of. JAAS provides access to a wide variety of authentication and authorization protocols. HTTPS is brain-dead easy. I can write my own TrustManager class, to control how (and from whom!) my program accepts certificates. There is built-in support for configurable SecurityManagers, that allow you fine-grained control over the allowed operations of the executing program.
In what context does Java provide "little support for...security in general"?
Grant -
Flex security - RSA implementation?
Hi all,
i am developing a client server app, the client is a flex app that communicate with a php server with amf protocol.
I need some security so i think some possible solution:
1. using https, but with any "web debugging proxy" anyone can decrypt ssl, so this is not a solution
2. using an rsa implementation, so if someone read the traffic it wont be a problem, but if someone
deassemble flex client, can access to the client private key and then the security will go away
Is there some stuff to securize the communication?
Thank youHi,
For security purposes, you would store the private key in the card and perform all private key operations there. One approach could be to store a certificate and the corresponding private key in a java card applet and then retrieve the certificate from the card. You could then send a random number (nonce) to the card and ask it to sign the number. The host application can then verify the signature with the public key in the certificate. The host could also verify the certificate against a certificate authority or a known trust chain.
The hard part is that you will need to implement this in the applet yourself. You can define a set of APDU's that you could send to the card for specific responses. For instance one command to get the certificate and another to sign some arbitrary data. You would also want a way of injecting the keys (this is the simple less secure approach though).
With certificates you can use the cryptographic properties to verify that you trust the card and if you do not receive a trusted certificate the program can terminate. Also if the signature is not verified then you could exit as well as the card has not proven ownership of the private key.
Cheers,
Shane -
Unable to create the implementation for BBP_PD_DOWNLOAD badi
Hi ,
Iam trying to create a new implementation for this BADI BBP_PD_DOWNLOAD as zbbp_pd_download but when iam trying to activate it .iam getting a message that already active implementation is there and i cannot create a new implementation unless i deactivate the other one.since it is a standard one i cannot deactivate it .
Has any one used this earlier . any inputs on this wil be of great help .
Thanks in advanceHi
<u>You can create any number of Customer Implementations, provided only one is active at a time.</u>
<b><u>Here are the steps -></u></b>
Either Using SE18 / SE19 Transaction, or
After you call the IMG activity, the system displays a dialog box where you enter a name for the implementation.
If implementations of this Business Add-In have already been created, the system displays them in a dialog box. You then choose one of them by choosing Create, and continue as follows:
1. In the dialog box, enter a name for the implementation of the Add-In and choose Create. (Say ZBADI)
The system displays the initial screen for creating Business Add-In implementations.
2. On this screen, enter a short description for you implementation in the Implementation Short Text field.
3. If you choose the Interface tab, you will notice that the system has filled in the Name of the Implementing Class field automatically, by assigning a class name based on the name of your implementation.
4. Save your entries and assign the Add-In to a package.
5. To edit a method, double-click its name.
6. Enter your implementation code between the method <Interface Name>~<Name of Method>. and endmethod. statements.
7. Save and activate your code. Navigate back to the Change Implementation screen.
Note: You can also create an implementation for an Add-In and not activate it until later. If you want to do this, do not carry out the following step:
8. Choose Activate.
When the application program is executed, the system carries out the code in the method you wrote.
Regards
- Atul -
Arc is not implemented for SQL Server 2005 physical model
I added the Arc in my relational model, which is supposed to provide that references are mutually exclusive (so only one refering column can be not null). However there is not any implementation for this in the SQL Server 2005 physical model. The SQL code generated simply ignores the Arc and allows any values for the columns covered by Arc. If we check Oracle physical model. then it generates some trigger, which controls how many columns have values assigned - this is actually an implementation of Arc. But there is nothing of this kind for SQL Server model...
By the way, implementing this Arc by trigger looks like to heavy approach. The very simple table level check constraint will do the same job. But this is a different subject though.
Edited by: Otbl on Nov 3, 2011 7:34 PMHi Dmitry,
it's fixed in Data Modeler 3.1 EA2.
Philip -
Enhancement implementation for enhancement spot DPR_EVENTS
Hi. SAP Export.
I created an enhancement implementation for enhancement spot DPR_EVENTS, and set the filter value equal to ON_TTO_IN_PROCESS, it means the code executed when user set system status to u2018IN PROCESSu2019.
I added my code to do some logical check in the method IF_EX_DPR_EVENTS~ON_EVENT, if the check failed. I can show an error message on the cProjects, BUT I CAN STILL SAVE THE DATA with ERROR. It looks like the error message is not useful.
Could some one please kindly help with provide a solution to solve this issue?Can you please elaborate, what exactly is the requirement? Do you want that the message should be displayed as warning & processing should continue or something else?
-
Java.lang.SecurityException: The SunJCE provider may have been tampered.
Hello all,
I am getting this exception :
java.lang.SecurityException: The SunJCE provider may have been tampered.
at com.sun.crypto.provider.DESedeKeyFactory.<init>(DashoA6275)
while running a java application (not written by me), which apparently is trying to encrypt a byte array at this point.
Does this ring a bell for any one ?
I am using j2sdk1.4.2_08, after having to uninstall j2sdk1.4.2_10 due to some other problems with this release.
Thank you,
VinceUsing JDK1.6 you should not need to have sunjce_provider.jar or jce1_2_2.jar in the lib directory. The Sun provider comes as part of JDK1.6 and ALL applications pick it up automatically.
-
QISR1 BADI implementation for HCM Processes & Forms
Hello All,
I am working on HCM Processes and Forms. I have created a process for Promotion/Position changes. For which I have to provide the drop down values for position, job, EE group, and Bonus Plan information. These value helps need to be restricted based on certain conditions.
In order to achieve this, I have created a new implementation for QISR1 and added the logic in the method "IF_EX_QISR1~INT_SERVICE_REQUEST_INIT". When I test my process, it is not considering the new implementation and always pointing to the reference implementation with the scenario "SASR".
Is there any customization settings for getting the new implementation while testing the process.
Please tell me what was the mistake in my process.
Thanks,
BinduHi,
Do you have a Z scenario created to handle the requirement ? I believe you need to perform a bunch of customizing activities in QISRSCENARIO transaction.
Phani. -
Default Implementation for PersistenceProvider
I am going to test my persistence layer outside of Java EE server.
Using jboss embedded ejb server, I write a persistence.xml with the following:
<provider>
org.hibernate.ejb.HibernatePersistence
</provider>
<transaction-type>RESOURCE_LOCAL<transaction-type>
Is there any default ORM in jboss server or reference implementation, so I can remove hibernate from my test environment?
i.e. is there any default implementation for PersistenceProvider.I am going to test my persistence layer outside of Java EE server.
Using jboss embedded ejb server, I write a persistence.xml with the following:
<provider>
org.hibernate.ejb.HibernatePersistence
</provider>
<transaction-type>RESOURCE_LOCAL<transaction-type>
Is there any default ORM in jboss server or reference implementation, so I can remove hibernate from my test environment?
i.e. is there any default implementation for PersistenceProvider. -
RSA implementation basics ...
Hi,
Iam totally new to the Java Card programming. I want to find out how is RSA implemented. Now if I need to get some information from card (eg. serial number) and check the same. How do I implement the same using the Host and Smart Card.
Any light on the same would be appreciated. Also, if anyone has example of implementation of RSA between Host and Smart card would be appreciated (in Delphi and Java) ...
ThanksHi,
I have written a code based on a sample. The program has a client which accepts a string at frontend and sends the information to be encrypted at card, then writes the encrypted information to the card. To decrypt the same, there is an option at the frontend to read the string from card, so the program, gets the string from the card (in encrypted form), then sends the string to card decrypt the same. Iam getting an Techincal error (error 38) while decrypting. Can you please help? I need a solution immediately. I been trying to work on the same for last few days.
I have pasted the code below for reference. Appreciate if some one could respond quickly.
package rsa_encrypt_decrypt;
import javacard.framework.*;
import javacard.security.*;
import javacardx.crypto.Cipher;
Host Call:
iopCard.SendCardAPDU(0x00,0xAA,0x02,P2,iArray,iArray.length);
Card Applet:
public class RSAEncryptDecrypt extends javacard.framework.Applet
// This applet is designed to respond to the following
// class of instructions.
final static byte GETSET_CLA = (byte) 0x85;
final static byte CRYPT_CLA = (byte) 0x00;
// Instruction set for SimpleString
final static byte SET = (byte)0x10;
final static byte GET = (byte)0x20;
final static byte SELECT = (byte) 0xA4;
// This buffer contains the string data on the card
byte TheBuffer[];
//globals
RSAPrivateCrtKey rsa_PrivateCrtKey;
RSAPublicKey rsa_PublicKey;
KeyPair rsa_KeyPair;
Cipher cipherRSA;
final short dataOffset = (short) ISO7816.OFFSET_CDATA;
//constructor
private HandsonRSAEncryptDecrypt(byte bArray[], short bOffset, byte bLength)
TheBuffer = new byte[100];
//generate own rsa_keypair
rsa_KeyPair = new KeyPair( KeyPair.ALG_RSA_CRT, KeyBuilder.LENGTH_RSA_1024 );
rsa_KeyPair.genKeyPair();
rsa_PublicKey = (RSAPublicKey) rsa_KeyPair.getPublic();
rsa_PrivateCrtKey = (RSAPrivateCrtKey) rsa_KeyPair.getPrivate();
cipherRSA = Cipher.getInstance(Cipher.ALG_RSA_PKCS1, false);
register(bArray, (short) (bOffset + 1), bArray[bOffset]);
//install
public static void install(byte bArray[], short bOffset, byte bLength)
new HandsonRSAEncryptDecrypt(bArray, bOffset, bLength);
public void process(APDU apdu)
if (selectingApplet())
return;
byte[] buf = apdu.getBuffer();
byte cla = buf[ISO7816.OFFSET_CLA];
byte ins = buf[ISO7816.OFFSET_INS];
if ((buf[ISO7816.OFFSET_CLA] != 0) && (buf[ISO7816.OFFSET_CLA] != GETSET_CLA)) ISOException.throwIt (ISO7816.SW_CLA_NOT_SUPPORTED);
if ((buf[ISO7816.OFFSET_INS] != (byte) (0xAA)) && (buf[ISO7816.OFFSET_INS] != (byte) (0x10)) && (buf[ISO7816.OFFSET_INS] != (byte) (0x20))) ISOException.throwIt (ISO7816.SW_INS_NOT_SUPPORTED);
switch (cla)
case GETSET_CLA:
switch (ins)
case SET:
SetString(apdu);
break;
case GET:
GetString(apdu);
break;
case CRYPT_CLA:
switch (buf[ISO7816.OFFSET_P1])
case (byte) 0x01:
encryptRSA(apdu);
return;
case (byte) 0x02:
decryptRSA(apdu);
return;
private void encryptRSA(APDU apdu)
byte a[] = apdu.getBuffer();
short byteRead = (short) (apdu.setIncomingAndReceive());
cipherRSA.init(rsa_PrivateCrtKey, Cipher.MODE_ENCRYPT);
short cyphertext = cipherRSA.doFinal(a, (short) dataOffset, byteRead, a, (short) dataOffset);
// Send results
apdu.setOutgoing();
apdu.setOutgoingLength((short) cyphertext);
apdu.sendBytesLong(a, (short) dataOffset, (short) cyphertext);
//SetString(apdu);
private void decryptRSA(APDU apdu)
byte a[] = apdu.getBuffer();
short byteRead = (short) (apdu.setIncomingAndReceive());
cipherRSA.init(rsa_PublicKey, Cipher.MODE_DECRYPT);
cipherRSA.doFinal(a, (short) dataOffset, byteRead, a, (short) dataOffset);
// Send results
apdu.setOutgoing();
apdu.setOutgoingLength((short) 24);
apdu.sendBytesLong(a, (short) dataOffset, (short) 24);
// SetString stores the string on the card.
private void SetString(APDU apdu) {
byte buffer[] = apdu.getBuffer();
byte size = (byte)(apdu.setIncomingAndReceive());
byte index;
// Store the length of the string and the string itself
TheBuffer[0] = size;
for (index = 0; index < size; index++)
TheBuffer[(byte)(index + 1)] = buffer[(byte)(ISO7816.OFFSET_CDATA + index)];
return;
// 1. Client sends a GetString APDU with a length of 0
// 2. Card responds with a Status Word of 0x62YY, where YY is the length
// of the string (in hex).
// 3. The client sends its GetString APDU again, but this time with the
// correct length.
private void GetString(APDU apdu) {
byte buffer[] = apdu.getBuffer();
byte numBytes = buffer[ISO7816.OFFSET_LC];
if (numBytes == (byte)0) {
ISOException.throwIt((short)(0x6200 + TheBuffer[0]));
apdu.setOutgoing();
apdu.setOutgoingLength(numBytes);
byte index;
for (index = 0; index <= numBytes; index++)
buffer[index] = TheBuffer[(byte)(index + 1)];
apdu.sendBytes((short)0,(short)numBytes);
return;
}
Maybe you are looking for
-
How do i load songs from my ipod into the library..The ipod has songs from another computer...i like them and i already have songs on my itunes library....i want to keep both if possible but the ones on the ipod for sure...i just want to add the song
-
Hi, below is my data model for SSAS 2008 on snowflake schema. Below is SQL Server DW tables: DimStudent - StudentID [primarykey], StudentName, DateOfBirth, AddressID DimStudentAddresses - AddressID [primarykey], StudentID [foreignkey], ddressLine1, A
-
SQLPLUS COPY COMMAND and TIMESTAMPS
I am copying data from production to a database warehouse. We had used insert into at one point but switched to the SQLPLUS COPY command as it increased our performance by almost over 50%. We recently added a table that has a TIMESTAMP. I understand
-
Dear SAP Guru's, in a process industry production takes place in different stages. For a particular stage let us say Blending there will be 5 phases where we use different resources. Instead of creating 5 resources in recipe i wish to go with one res
-
Hi there, can anybody help me with remote debugging servlets and JSP running inside OC4J with JDeveloper 3.2.3? (JDK Version 1.3.1). Any help would be very welcome! Thanks in advance! Stefan