[prev in list] [next in list] [prev in thread] [next in thread] 

List:       xmlrpc-user
Subject:    RE: HSM
From:       Christian Mäder <Christian.Maeder () netcetera ! com>
Date:       2016-01-21 15:12:18
Message-ID: c6ce3a584b1a486092f7d99497ad4790 () exchange01 ! one ! nca
[Download RAW message or body]

[Attachment #2 (text/plain)]

Hi Colm

Thanks for your hint. I was looking at that quickly before. We'll see if it suits my \
needs. I'll try to share my experience as soon as I have tried out some more.

~Chris

--
Living proof of 20 years of software ingenuity: http://netcetera.com/20years

Christian Mäder | christian.maeder@netcetera.com | T +41 44 297 57 24 |
Netcetera AG | 8040 Zürich | Switzerland | http://netcetera.com |
From: Colm O hEigeartaigh [mailto:coheigea@apache.org]
Sent: Thursday, January 21, 2016 11:00 AM
To: users@ws.apache.org
Subject: Re: HSM

I believe it can be done by using the MerlinDevice Crypto implementation, although I \
haven't tried it personally:

https://svn.apache.org/repos/asf/webservices/wss4j/trunk/ws-security-common/src/main/java/org/apache/wss4j/common/crypto/MerlinDevice.java
 Colm.

On Thu, Jan 21, 2016 at 8:24 AM, Christian Mäder \
<Christian.Maeder@netcetera.com<mailto:Christian.Maeder@netcetera.com>> wrote: Hi

Has anyone experience with running wss4j and private keys stored in an HSM (i.e. \
hardware protected private keys)? I would be very glad to hear about your successful \
or failed endeavors.

Cheers,
Chris

--
Living proof of 20 years of software ingenuity: http://netcetera.com/20years

Christian Mäder | christian.maeder@netcetera.com<mailto:christian.maeder@netcetera.com> \
| T +41 44 297 57 24<tel:%2B41%2044%20297%2057%2024> | Netcetera AG | 8040 Zürich | \
Switzerland | http://netcetera.com |



--
Colm O hEigeartaigh

Talend Community Coder
http://coders.talend.com


[Attachment #3 (text/html)]

<html xmlns:v="urn:schemas-microsoft-com:vml" \
xmlns:o="urn:schemas-microsoft-com:office:office" \
xmlns:w="urn:schemas-microsoft-com:office:word" \
xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" \
xmlns="http://www.w3.org/TR/REC-html40"> <head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
	{font-family:"Cambria Math";
	panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
	{font-family:Calibri;
	panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
	{margin:0cm;
	margin-bottom:.0001pt;
	font-size:12.0pt;
	font-family:"Times New Roman",serif;}
a:link, span.MsoHyperlink
	{mso-style-priority:99;
	color:blue;
	text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
	{mso-style-priority:99;
	color:purple;
	text-decoration:underline;}
span.hoenzb
	{mso-style-name:hoenzb;}
span.EmailStyle18
	{mso-style-type:personal-reply;
	font-family:"Arial",sans-serif;
	color:black;}
.MsoChpDefault
	{mso-style-type:export-only;
	font-family:"Calibri",sans-serif;
	mso-fareast-language:EN-US;}
@page WordSection1
	{size:612.0pt 792.0pt;
	margin:70.85pt 70.85pt 2.0cm 70.85pt;}
div.WordSection1
	{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="DE-CH" link="blue" vlink="purple">
<div class="WordSection1">
<p class="MsoNormal"><span \
style="font-size:10.0pt;font-family:&quot;Arial&quot;,sans-serif;color:black;mso-fareast-language:EN-US">Hi \
Colm<o:p></o:p></span></p> <p class="MsoNormal"><span \
style="font-size:10.0pt;font-family:&quot;Arial&quot;,sans-serif;color:black;mso-fareast-language:EN-US"><o:p>&nbsp;</o:p></span></p>
 <p class="MsoNormal"><span lang="EN-US" \
style="font-size:10.0pt;font-family:&quot;Arial&quot;,sans-serif;color:black;mso-fareast-language:EN-US">Thanks \
for your hint. I was looking at that quickly before. We'll see if it suits my \
needs.<o:p></o:p></span></p> <p class="MsoNormal"><span lang="EN-US" \
style="font-size:10.0pt;font-family:&quot;Arial&quot;,sans-serif;color:black;mso-fareast-language:EN-US">I'll \
try to share my experience as soon as I have tried out some \
more.<o:p></o:p></span></p> <p class="MsoNormal"><span lang="EN-US" \
style="font-size:10.0pt;font-family:&quot;Arial&quot;,sans-serif;color:black;mso-fareast-language:EN-US"><o:p>&nbsp;</o:p></span></p>
 <p class="MsoNormal"><span lang="EN-US" \
style="font-size:10.0pt;font-family:&quot;Arial&quot;,sans-serif;color:black;mso-fareast-language:EN-US">~Chris<o:p></o:p></span></p>
 <p class="MsoNormal"><span lang="EN-US" \
style="font-size:10.0pt;font-family:&quot;Arial&quot;,sans-serif;color:black;mso-fareast-language:EN-US"><o:p>&nbsp;</o:p></span></p>
 <p class="MsoNormal"><span lang="EN-US" \
style="font-size:10.0pt;font-family:&quot;Arial&quot;,sans-serif;color:black">-- <br>
Living proof of 20 years of software ingenuity: http://netcetera.com/20years<br>
<br>
Christian Mäder | christian.maeder@netcetera.com | T &#43;41 44 297 57 24 |<br>
Netcetera AG | 8040 Zürich | Switzerland | http://netcetera.com | </span><span \
lang="EN-US" style="font-size:10.0pt;font-family:&quot;Arial&quot;,sans-serif;color:black;mso-fareast-language:EN-US"><o:p></o:p></span></p>
 <p class="MsoNormal"><b><span lang="EN-US" \
style="font-size:11.0pt;font-family:&quot;Calibri&quot;,sans-serif">From:</span></b><span \
lang="EN-US" style="font-size:11.0pt;font-family:&quot;Calibri&quot;,sans-serif"> \
Colm O hEigeartaigh [mailto:coheigea@apache.org] <br>
<b>Sent:</b> Thursday, January 21, 2016 11:00 AM<br>
<b>To:</b> users@ws.apache.org<br>
<b>Subject:</b> Re: HSM<o:p></o:p></span></p>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<div>
<div>
<p class="MsoNormal" style="margin-bottom:12.0pt">I believe it can be done by using \
the MerlinDevice Crypto implementation, although I haven't tried it personally:<br> \
<br> <a href="https://svn.apache.org/repos/asf/webservices/wss4j/trunk/ws-security-com \
mon/src/main/java/org/apache/wss4j/common/crypto/MerlinDevice.java">https://svn.apache \
.org/repos/asf/webservices/wss4j/trunk/ws-security-common/src/main/java/org/apache/wss4j/common/crypto/MerlinDevice.java</a><o:p></o:p></p>
 </div>
<p class="MsoNormal">Colm.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<div>
<p class="MsoNormal">On Thu, Jan 21, 2016 at 8:24 AM, Christian Mäder &lt;<a \
href="mailto:Christian.Maeder@netcetera.com" \
target="_blank">Christian.Maeder@netcetera.com</a>&gt; wrote:<o:p></o:p></p> \
<blockquote style="border:none;border-left:solid #CCCCCC 1.0pt;padding:0cm 0cm 0cm \
6.0pt;margin-left:4.8pt;margin-right:0cm"> <p class="MsoNormal" \
style="margin-bottom:12.0pt">Hi<br> <br>
Has anyone experience with running wss4j and private keys stored in an HSM (i.e. \
hardware protected private keys)?<br> I would be very glad to hear about your \
successful or failed endeavors.<br> <br>
Cheers,<br>
Chris<br>
<span style="color:#888888"><br>
<span class="hoenzb">--</span><br>
<span class="hoenzb">Living proof of 20 years of software ingenuity: <a \
href="http://netcetera.com/20years" target="_blank"> \
http://netcetera.com/20years</a></span><br> <br>
<span class="hoenzb">Christian Mäder | <a \
href="mailto:christian.maeder@netcetera.com"> christian.maeder@netcetera.com</a> | T \
<a href="tel:%2B41%2044%20297%2057%2024">&#43;41 44 297 57 24</a> |</span><br> <span \
class="hoenzb">Netcetera AG | 8040 Zürich | Switzerland | <a \
href="http://netcetera.com" target="_blank"> http://netcetera.com</a> \
|</span></span><o:p></o:p></p> </blockquote>
</div>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
</div>
<p class="MsoNormal"><br clear="all">
<br>
-- <o:p></o:p></p>
<div>
<p class="MsoNormal">Colm O hEigeartaigh<br>
<br>
Talend Community Coder<br>
<a href="http://coders.talend.com" \
target="_blank">http://coders.talend.com</a><o:p></o:p></p> </div>
</div>
</body>
</html>



[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic