Re: SSH implementaion - using MSCAPI Vs JCE

To: Peter Gutmann <pgut001%cs.auckland.ac.nz@localhost>
Subject: Re: SSH implementaion - using MSCAPI Vs JCE
From: Joseph Galbraith <galb-list%vandyke.com@localhost>
Date: Tue, 09 Nov 2004 08:57:55 -0700

Peter Gutmann wrote:

Anandha S Srinivasan <AnandhaSubramanian%in.ibm.com@localhost> writes:

We are in the early stages of implementing SSH support for our terminal
emulation product (MS Windows based). I would like to see some information on
whether using JCE Vs MSCAPI interfaces will give any advantage with respect to
development of SSH (actually SSH2).


I can't see that either would give any advantage, all you'll be using is very
low-level stuff like RSA, 3DES, DH (actually I'm not sure how widely DH is
supported in deployed CryptoAPI CSPs, that may be a point against it).  So
it's really a case of do you want to be tied to Microsoft Windows or tied to
Java?

I believe last time we looked at it, CAPI didn't expose the DHprimitives sufficiently to implementSSH2 on top of them. (I'm a little vague, but I think the problem wasthat you can't get the rawk out of CAPI, but only a key derived from k by CAPI-- using a differentalgorithm than that

specified by SECSH naturually.)

- Joseph

References:
- Re: SSH implementaion - using MSCAPI Vs JCE
  - From: Peter Gutmann

Prev by Date: Re: SSH implementaion - using MSCAPI Vs JCE
Next by Date: A stable reference to ssh v1 (ticket #453)
Previous by Thread: Re: SSH implementaion - using MSCAPI Vs JCE
Next by Thread: A stable reference to ssh v1 (ticket #453)
Indexes:

Home | Main Index | Thread Index | Old Index