[prev in list] [next in list] [prev in thread] [next in thread] 

List:       xml-security-dev
Subject:    Re: apache java xml sec library release 1.4RC3 jar has been uploaded.
From:       Sean Mullan <Sean.Mullan () Sun ! COM>
Date:       2006-10-30 21:57:48
Message-ID: 4546755C.1030906 () Sun ! COM
[Download RAW message or body]

Miroslav Nachev wrote:
> 
>> If anyone else would like to see JSR 106 in JDK 7, please send me an 
>> email with a few more details as to why it would be helpful, and your 
>> company/organization name (if applicable). 
> COSMOS Software Enterprises, Ltd.
> Sofia, Bulgaria
> 
> It is not a problem to be used as external library, but is more useful 
> if is part of JDK.
> 
> Also I  would like to tell you for some disadvantages in the existing 
> XML Digital Signature included in JDK6. There are too many 
> functionalities which exists in Apache XML Security and internal classes 
> in JDK6, but doesn't exists in official JDK6 API. There are cases where 
> if you start using internal classes which are not part of JDK XML 
> Digital Signature but are part of Apache XML Security some clashes 
> (conflicts) occur with classes with the same name which are from 
> different package names.

We rename the Apache XML Security packages in the JDK to avoid these 
type of issues, so I would be interested to know more about the problems 
you are having.

> Also to retrieve more information from Certificates I use internal 
> classes from JDK instead to use external libraries. Why these 
> functionalities are hidden instead of to being put to official API?

Can you give me more specific examples of which classes you find useful.

> The last question is why is it not possible to generate version 3 
> X509Certificates using JDK? That's why we have to use external libraries 
> like OpenSSL and other.

Yes, certificate generation API/tools has been requested by other users, 
and is something we would like to do and your feedback is important to 
help justify it, so I will pass it on.

Thanks for the feedback. If others on this list have other security 
features they would like to see in the JDK, please let me know. Also, 
feel free to email me privately if you want as not everyone on this list 
may be interested in this discussion.

Disclaimer: please note that due to resources, etc we will not be able 
to accomodate all requests. Also, all Java SE platform features are 
subject to JCP (Java Community Process) approval.

--Sean

[prev in list] [next in list] [prev in thread] [next in thread]