Date: Thu, 1 Jul 1999 10:12:18 -0700 (PDT)
From: Mayank Upadhyay <mdu@eng.sun.com>
To: "Channasubbanna Prasad [TEMP]" <channasubbanna.prasad@eng.sun.com>
Subject: Re: GSSAPI and Java
In-Reply-To: <0FE600CNN1GTCN@ha-sims.eng.sun.com>
On Wed, 30 Jun 1999, Channasubbanna Prasad [TEMP] wrote:
> A customer would like to know of an implementation of the GSSAPI
> for java.
>
> http://java.sun.com/security/hypermail/java-security-archive-3/0510.html
> mentions a draft being worked on to the IETF.
>
> Could you please let us know the status/availability?
The API is still being standardized at the IETF. A new version of the
draft (draft-ietf-cat-gssv2-javabind-02.txt) was posted last Friday and
should be available soon on the IETF web site (www.ietf.org) under the CAT
working group. Javadocs for the API can be found at
http://playground.sun.com/~mdu/JGSS.html
Sun does have a Java GSS-API framework based on the first version of the
draft but it is not public yet. I will let you know if and when we decide
to make it available for general distribution.
It is designed to have a pluggable architecture where multiple security
mechanisms may be used underneath it. But we're still waiting to get a
java based mechanism plugin like Kerberos or SPKM.
There is a Java GSS-API reference implementation that supports kerberos
only that is available in Australia and is free for non commercial use.
This implementation is also based on the first version of the IETF draft.
The URL is:
http://security.dstc.edu.au/projects/java/release4.html.
Hope this helps!
Regards,
Mayank
>
> Would greatly appreciate any pointers in this regard.
>
>
>
> Thanks and Regards,
> Prasad
>