Win a copy of The Little Book of Impediments (e-book only) this week in the Agile and Other Processes forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

If java application talks to EJB tier directly, how to implement SSL?

 
Newman Huang
Ranch Hand
Posts: 85
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
i have no idea about this. anyone?
 
suekar meredilko
Ranch Hand
Posts: 153
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
rmi-iiop over ssl is possible
 
Newman Huang
Ranch Hand
Posts: 85
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
hi,suekar

thanks for your reply. i know it can. but i do not know how to. i googled this topic and found seldom valued pages.

in java5, a new package is included, javax.rmi.ssl. i think that is the answer. my doubt is, when java5 not came out, how others do ssl?

i hope someone can give a detail conclusions.
 
Samuel Pessorrusso
Ranch Hand
Posts: 164
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Originally posted by newman huang:
i know it can. but i do not know how to.


First of all, You don't need to know how it is done, this is developers' responsibility.

Second, read your assignment carefully. The CUSTOMER need to communicate with you application using SSL. It is not said anything about the travel agent.
 
tony clare
Ranch Hand
Posts: 31
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
First of all, You don't need to know how it is done, this is developers' responsibility.

[Comment], I don't agree. I think it's the right responsibility of architect for the remote secure access. Using RMI over HTTPS tunnel for public network (Internet) access is not a good practice. That's the reason HTTP as a black horse in 1995 led ahead than COBRA and DCOM.

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Second, read your assignment carefully. The CUSTOMER need to communicate with you application using SSL. It is not said anything about the travel agent.
[Comment], Agree, be careful to read it. Agents are assumed to keep using the existing private network which was used for 3270 terminal access.
[ August 18, 2006: Message edited by: tony clare ]
 
Dan Drillich
Ranch Hand
Posts: 1183
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi Samuel,

Second, read your assignment carefully. The CUSTOMER need to communicate with you application using SSL. It is not said anything about the travel agent.


Good point!

Many people simply assumed that the travel agents are on the intranet.

Regards,
Dan
 
Tom Adams
Ranch Hand
Posts: 56
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Yep - I agree that the travel agent app network traffic does not need to be encrypted.

However, encrypted RMI traffic is possible. A good? option with Weblogic is to use their encrypted T3 protocol T3s. It performs much better than tunneling RMI over HTTP(s).

HTH
Tom
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic