Hello,
I am currently implementing the SSL protocol in JAVA, and I encountered
a strange problem, I hope you will be able to help me with.
I am looking for a server that will be able to produce alerts and give
me some indication about what I am doing wrong in a Client
Authentication process.
My client implementation uses SSL3.0 with RSA and 128 bits RC4 (domestic
strength), and supports Client Authentication.
Problem Description:
When I try to connect to a web server (IIS 4.0) using my client
implementation I am able to finish the handshake and then receive the
Hello Request message (encrypted).
I am starting the handshake again (encrypted this time), and receive a
Certificate Request from the server.
My Client send to the server the Client Certificate, Client Key
Exchange, Certificate Verify, Change Cipher Spec and then the Client
Finish (encrypted with the newly selected key).
After the messages are sent to the client I receive no answer from the
server (and in the case of IIS 5.0, the socket is closed unexpectedly
with no alert).
I checked my SSL Server implementation with netscape and IE and it
worked fine (using the same process - sending Hello Request etc...), IE
and Netscape also worked fine with the IIS server.
My SSL Client implementation also works fine with my Server SSL
implementation.
I checked anything I could think of, including the messages length and
the RSA keys and didn't find the problem.
My last chance now is to find a web server that not only supports the
User Authentication process, but also is able to indicate where exactly
I am wrong (the IIS server didn't produce any log messages for the
unfinished handshake).
Do you have a testing server up and running that I can connect to with
my SSL Client (and get feedback) ?
Do you have an idea how I can solve this problem ?
Thank you,
Yoni Mizrahi.
S/MIME Cryptographic Signature
