You need to have the same type, or at least compatiable type of APIs, if the security is not assured by the containers, or Web browser.
4 years ago, I worked for a project that migrate the financial transaction server with the COBRA gateway server. We need to perform server-to-server authentication, and thus, both server has its own public/private key pair.
However, the key generated for FTS uses
Java, while that of COBRA gateway server is generated uses C. We found that the Java library cannot converted the byte[] of the key into Java Keystore.
And finally, we need to use native library method to import the key for encryption.
I guess nowadays will be better, as people put more concerns on system integration and interoperability. But I have not recent experiences on this area.
Nick
SCJP 1.2, OCP 9i DBA, SCWCD 1.3, SCJP 1.4 (SAI), SCJD 1.4, SCWCD 1.4 (Beta), ICED (IBM 287, IBM 484, IBM 486), SCMAD 1.0 (Beta), SCBCD 1.3, ICSD (IBM 288), ICDBA (IBM 700, IBM 701), SCDJWS, ICSD (IBM 348), OCP 10g DBA (Beta), SCJP 5.0 (Beta), SCJA 1.0 (Beta), MCP(70-270), SCBCD 5.0 (Beta), SCJP 6.0, SCEA for JEE5 (in progress)