Question about JSSE

Jayme Edwards (angjh@execpc.com)
Wed, 11 Aug 1999 18:24:35 -0500

From: "Jayme Edwards" <angjh@execpc.com>
To: <java-security@Sun.COM>
Subject: Question about JSSE
Date: Wed, 11 Aug 1999 18:24:35 -0500

Java Security Folks,

Please allow me to briefly comment about the Java Secure Socket Extension
API. We are building several distributed TCP/IP applications with Windows
NT on the server and Internet Explorer and/or Java (JDK 1.1) on the
client(s) and could really use a standard SSL library for Java - there are
other implementations out there but we're still waiting on you guys to come
out with the standard extension, which JSSE looks to be as the first step in
that direction and will help ease us forward into using the 1.2 JDK. I've
seen the posts on Java security discussion pages - it seems EVERYONE is
screaming for this capability. However, the inability to make the client
software accessible to users outside of the US and Canada makes this
solution unacceptable for worldwide software distribution and usage. You
guys have done a great job with the 1.2 JDK so far - please continue this
trend by considering the additional release of a stripped-down version of
the JSSE with limits on the encryption algorithms that provide packages that
are acceptable to export. Even if this package only provided the client
connectability, it would solve the majority of the problem, which is the
ability for servers in the US to securely make their business systems and
information available to customers worldwide.

Thanks,

Jayme Edwards
Rockwell Software
SoftLogix Extensions - http://www.softautomation.com/slx
Microsoft MVP for Java/COM