Use of OpenSSL as JCE security provider if available on system
Norman Maurer
norman.maurer at googlemail.com
Fri Mar 15 17:10:14 UTC 2019
Actually this is not based on OpenSSL but it uses BoringSSL (which provides an OpenSSL API + some extra stuff), just in case it matters for anyone.
Bye
Norman
> On 15. Mar 2019, at 17:37, Simone Bordet <simone.bordet at gmail.com> wrote:
>
> Hi,
>
> On Fri, Mar 15, 2019 at 3:28 PM Darran Lofthouse
> <darran.lofthouse at jboss.com> wrote:
>> FYI if anyone is interested in using OpenSSL through a Java security Provider we have this project available within the WildFly project: -
>>
>> https://github.com/wildfly/wildfly-openssl
>
> There is also the effort from Google, Conscrypt:
> https://github.com/google/conscrypt
>
> It's a full blown JCE and JSSE implementation based on OpenSSL, so it
> can easily be used in this way;
>
> java.security.Security.addProvider(new org.conscrypt.OpenSSLProvider());
>
> To my knowledge, Conscrypt is what's being used in Android and we
> optionally use it in Jetty too.
>
> --
> Simone Bordet
> ---
> Finally, no matter how good the architecture and design are,
> to deliver bug-free software with optimal performance and reliability,
> the implementation technique must be flawless. Victoria Livschitz
More information about the security-dev
mailing list