Date: Fri, 25 Jul 1997 14:09:11 -0700
Message-Id: <199707252109.OAA03153@puffin.eng.sun.com>
From: Marianne Mueller <mrm@Eng>
To: alex@manhattanintranet.com
Subject: Re: Secure transactions...
The JCE supports DES, at any key length, so if you use a key of the
appropriate length for your need for privacy, this should work. Refer
to a good reference book like Schneier's "Applied Cryptography" for
guidance on what key length would be appropriate for your
application.
As for stability, the algorithms implemented are stable, but please
note that we are getting a lot of feedback on the APIs, and the APIs
are rapidly evolving. Mainly, we are making them more flexible so
they can better support a wider variety of underlying algorithms.
As to whether SSL would solve your problems, I can't say, since I
don't know exactly what situation you need to solve (I hasten to add:
please don't ask us to design a solution since that is outside the
scope of what we have time to tackle! thanks!) However, SSL is
available today as part of the Java Web Server, HotJava and in the
Server Toolkit, as either a binary or source product.
HotJava:
http://java.sun.com/products/HotJava
Java Web Server and Server Toolkit:
http://jserv.javasoft.com
SSL is supported by the common browsers, so it might be a good way to
start.
Thanks,
Marianne