no surprise - Sun fails to open source the crypto part of Java
Florian Weimer
fw at deneb.enyo.de
Mon May 14 13:31:22 EDT 2007
* Ian G.:
> My worry was that they hadn't open sourced the architecture component,
> the part that wasn't meant to be replaceable. However even if open
> sourced, Sun may still wield a stick over the providers by insisting
> that they manage the signing process for the providers.
The signing provider PKI is a joke, it's sole purpose is to ensure
that Sun has got a fax allegedly from you in which you promise that
you will comply with applicable export regulations.
The root CA list shipped in OpenJDK should be empty at this stage (at
least this is mentioned somewhere on the OpenJDK web page) because it
is not clear what the criteria are to populate it.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list