Hi! I work for a small software development company
in Oakland, CA. We're developing a product that
will allow lawyers to view case information over the web
using a Java applet. As you can imagine, these documents
are extremely sensitive, so it's important for us to encrypt all
of the data passing between the client and the server.
Our problem is that we want the applet to be *untrusted*,
because we want to make the program as easy as possible
to use. Does anyone here know of any Java API's that would
allow strong encryption in an untrusted applet?
Sun's JCE requires trusted applets. I looked at ITISSL,
but it looks like it requires native calls which, of course, would
cause a SecurityException. IBM developed SSLite which
looks perfect, but the marketing geniuses over there buried
it as a part of SecureWay FirstSecure (a collection of firewall
and server garbage we don't need) which made it prohibitively
expensive.
Any ideas?
Gerard Monsen
Integrated Litigation Solutions
Oakland, CA
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
