HSM

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

HSM

Christian Mäder
Hi

Has anyone experience with running wss4j and private keys stored in an HSM (i.e. hardware protected private keys)?
I would be very glad to hear about your successful or failed endeavors.

Cheers,
Chris

--
Living proof of 20 years of software ingenuity: http://netcetera.com/20years

Christian Mäder | [hidden email] | T +41 44 297 57 24 |
Netcetera AG | 8040 Zürich | Switzerland | http://netcetera.com |

Reply | Threaded
Open this post in threaded view
|

Re: HSM

Colm O hEigeartaigh-2
I believe it can be done by using the MerlinDevice Crypto implementation, although I haven't tried it personally:

https://svn.apache.org/repos/asf/webservices/wss4j/trunk/ws-security-common/src/main/java/org/apache/wss4j/common/crypto/MerlinDevice.java

Colm.

On Thu, Jan 21, 2016 at 8:24 AM, Christian Mäder <[hidden email]> wrote:
Hi

Has anyone experience with running wss4j and private keys stored in an HSM (i.e. hardware protected private keys)?
I would be very glad to hear about your successful or failed endeavors.

Cheers,
Chris

--
Living proof of 20 years of software ingenuity: http://netcetera.com/20years

Christian Mäder | [hidden email] | T <a href="tel:%2B41%2044%20297%2057%2024" value="+41442975724">+41 44 297 57 24 |
Netcetera AG | 8040 Zürich | Switzerland | http://netcetera.com |




--
Colm O hEigeartaigh

Talend Community Coder
http://coders.talend.com
Reply | Threaded
Open this post in threaded view
|

RE: HSM

Christian Mäder

Hi Colm

 

Thanks for your hint. I was looking at that quickly before. We’ll see if it suits my needs.

I’ll try to share my experience as soon as I have tried out some more.

 

~Chris

 

--
Living proof of 20 years of software ingenuity: http://netcetera.com/20years

Christian Mäder | [hidden email] | T +41 44 297 57 24 |
Netcetera AG | 8040 Zürich | Switzerland | http://netcetera.com |

From: Colm O hEigeartaigh [mailto:[hidden email]]
Sent: Thursday, January 21, 2016 11:00 AM
To: [hidden email]
Subject: Re: HSM

 

I believe it can be done by using the MerlinDevice Crypto implementation, although I haven't tried it personally:

https://svn.apache.org/repos/asf/webservices/wss4j/trunk/ws-security-common/src/main/java/org/apache/wss4j/common/crypto/MerlinDevice.java

Colm.

 

On Thu, Jan 21, 2016 at 8:24 AM, Christian Mäder <[hidden email]> wrote:

Hi

Has anyone experience with running wss4j and private keys stored in an HSM (i.e. hardware protected private keys)?
I would be very glad to hear about your successful or failed endeavors.

Cheers,
Chris

--
Living proof of 20 years of software ingenuity: http://netcetera.com/20years

Christian Mäder | [hidden email] | T <a href="tel:%2B41%2044%20297%2057%2024">+41 44 297 57 24 |
Netcetera AG | 8040 Zürich | Switzerland | http://netcetera.com |

 



--

Colm O hEigeartaigh

Talend Community Coder
http://coders.talend.com