Win a copy of The Little Book of Impediments (e-book only) this week in the Agile and Other Processes forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

security in j2me

 
arvind doraiswamy
Greenhorn
Posts: 11
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi guyz,
I have a properly working minibanking application wherein my emulator communicates ok with a servlet and gets me the required data from the database.But theres no security.So i read up and found out that there was Satsa and BouncyCastle.Which should i use and which has great mailing lists like this one ? Also if i do use them , where should i put the .jar so as to avoid compile time errors.Is it in the /common/lib of my tomcat or my lib directory of my j2sdk.Do let me know?..thnx a lot
arvind
 
Lasse Koskela
author
Sheriff
Posts: 11962
5
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
If your intention is to have some encryption/decryption stuff happening on the mobile device, you'll obviously need to compile the necessary security libraries into your .jar file as well. For the server-side application, I would strongly suggest packaging the security libraries into your WEB-INF/lib directory (inside the .war file) instead of trusting on the server having them in its classpath.
 
Lasse Koskela
author
Sheriff
Posts: 11962
5
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Oh, and I'd suggest using BouncyCastle. It's by far the most popular open source encryption library.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic