MaxQDPro Team
  Anjan.K   Harish.R
II Sem M.Tech CSE
   JSSE Class Diagram
   Basic Implementation
    ◦ Key tool
    ◦ Parameters
    ◦ Live Demonstration
   Advanced impl...
MaxQDPro : SSL Final
     Demostration      05/24/09   3
   Accomplished under Command prompt with
    simple command to illustrate working of the SSL
   Manual Certificate gene...
   Its a basic command-line tool for
    manipulating keystores
   Comes with JDK/JRE distribution
   Always available ...
   First switch on the SSL Server with
    java -Djavax.net.ssl.keyStore=myKey -
    Djavax.net.ssl.keyStorePassword=1234...
MaxQDPro : SSL Final
     Demostration      05/24/09   7
   Software Requirement Specification
    ◦ Operating System : Unix-Variant or Windows
      latest
    ◦ Programming Lan...
   Certificate and the key pairs are auto
    generated by underlying code written
   Keystore now creates trust store f...
   PKI is used with X.509 for dealing
    management of the Certificates and hierarchy
    of the CA’s.
   JCE providers...
   To run the SSLServer
    ◦ Choose the SSLServer main class under run
      configuration
    ◦ -Djavax.net.ssl.keyStor...
MaxQDPro : SSL Final
     Demostration      05/24/09   12
   JSSE Class Diagram
   Basic Implementation
    ◦ Key tool
    ◦ Parameters
    ◦ Live Demonstration
   Advanced impl...
[1] David Hook, “Beginning Cryptography with
   Java”, 2005 print
[2] Jonathan Knudsen, “Java Cryptography”, 1st
   editio...
SSL/TLS implementation using JSSE
Upcoming SlideShare
Loading in …5
×

SSL/TLS implementation using JSSE

2,273 views

Published on

SSL/TLS implementation using JSSE under eclipse IDE

Published in: Technology, Education
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
2,273
On SlideShare
0
From Embeds
0
Number of Embeds
3
Actions
Shares
0
Downloads
0
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

SSL/TLS implementation using JSSE

  1. 1. MaxQDPro Team Anjan.K Harish.R II Sem M.Tech CSE
  2. 2.  JSSE Class Diagram  Basic Implementation ◦ Key tool ◦ Parameters ◦ Live Demonstration  Advanced implementation ◦ Certificate generation ◦ Live Demonstration  Summary  References MaxQDPro : SSL Final Demostration 05/24/09 2
  3. 3. MaxQDPro : SSL Final Demostration 05/24/09 3
  4. 4.  Accomplished under Command prompt with simple command to illustrate working of the SSL  Manual Certificate generation accomplished by keytool utility of the Java  Certificate required for the secure communication between the client and server keytool -genkey -keystore myKey -keyalg RSA  Keystore is key ring securely locked : by the receiver MaxQDPro SSL Final Demostration 05/24/09 4
  5. 5.  Its a basic command-line tool for manipulating keystores  Comes with JDK/JRE distribution  Always available at terminal iff path is set properly.  Provides ◦ generation of keys ◦ Export and import of X.509 certificates ◦ ability to produce certification requests  Available with dozen of options hence no concrete format for the command MaxQDPro : SSL Final Demostration 05/24/09 5
  6. 6.  First switch on the SSL Server with java -Djavax.net.ssl.keyStore=myKey - Djavax.net.ssl.keyStorePassword=1234 56 EchoServer  Switch on the SSLClient with java -Djavax.net.ssl.trustStore=myKey -Djavax.net.ssl.trustStorePassword=12 3456 EchoClient MaxQDPro : SSL Final Demostration 05/24/09 6
  7. 7. MaxQDPro : SSL Final Demostration 05/24/09 7
  8. 8.  Software Requirement Specification ◦ Operating System : Unix-Variant or Windows latest ◦ Programming Language: Java (JDK 1.6 or J2SE 6) ◦ Cryptography Provider : Sun JCE and Bouncy Castle ◦ JVM : Standard JVM by Sun ◦ Tools : Keytool and Policytool MaxQDPro : SSL Final Special Libraries : JSSE and JCA Demostration 05/24/09 8
  9. 9.  Certificate and the key pairs are auto generated by underlying code written  Keystore now creates trust store for the client and server’s keystore and saves them with .jks file extension  Client credentials saved as with .p12 (PKCS 12)  Developed in eclipse IDE  Certificate validation happens till root CA. MaxQDPro : SSL Final Demostration 05/24/09 9
  10. 10.  PKI is used with X.509 for dealing management of the Certificates and hierarchy of the CA’s.  JCE providers used are Bouncy Castle (BC) and Sun JCE.  JCE provider apart from the standard Sun needs to configured either by ◦ editing the .security file security.provider.N=org.bouncycastle.jce.provider.BouncyCast leProvider MaxQDPro : SSL Final Demostration 05/24/09 10
  11. 11.  To run the SSLServer ◦ Choose the SSLServer main class under run configuration ◦ -Djavax.net.ssl.keyStore=server.jks ◦ - Djavax.net.ssl.keyStorePassword=serverPass word  To run the SSLClient ◦ Choose the SSLClient main class under run configuration MaxQDPro : SSL Final ◦ -Djavax.net.ssl.trustStore=trustStore.jks 05/24/09 Demostration 11
  12. 12. MaxQDPro : SSL Final Demostration 05/24/09 12
  13. 13.  JSSE Class Diagram  Basic Implementation ◦ Key tool ◦ Parameters ◦ Live Demonstration  Advanced implementation ◦ Certificate generation ◦ Live Demonstration MaxQDPro : SSL Final Demostration 05/24/09 14
  14. 14. [1] David Hook, “Beginning Cryptography with Java”, 2005 print [2] Jonathan Knudsen, “Java Cryptography”, 1st edition, 1998 print by O’Reilly [3] David Reilly et.al., “Java Network Programming and Distributed Computing”, 2002 print by Addison Wesley [4] William Stallings, “Cryptography and Network Security”,3rd edition by Pearson MaxQDPro : SSL Final 05/24/09 15 Demostration

×