aspose file tools*
The moose likes Architect Certification (SCEA/OCMJEA) and the fly likes If java application talks to EJB tier directly, how to implement SSL? Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Certification » Architect Certification (SCEA/OCMJEA)
Bookmark "If java application talks to EJB tier directly, how to implement SSL?" Watch "If java application talks to EJB tier directly, how to implement SSL?" New topic
Author

If java application talks to EJB tier directly, how to implement SSL?

Newman Huang
Ranch Hand

Joined: Mar 31, 2003
Posts: 85
i have no idea about this. anyone?


SCJP,SCJD,SCEA
suekar meredilko
Ranch Hand

Joined: Mar 27, 2006
Posts: 153
rmi-iiop over ssl is possible
Newman Huang
Ranch Hand

Joined: Mar 31, 2003
Posts: 85
hi,suekar

thanks for your reply. i know it can. but i do not know how to. i googled this topic and found seldom valued pages.

in java5, a new package is included, javax.rmi.ssl. i think that is the answer. my doubt is, when java5 not came out, how others do ssl?

i hope someone can give a detail conclusions.
Samuel Pessorrusso
Ranch Hand

Joined: Jul 21, 2005
Posts: 164
Originally posted by newman huang:
i know it can. but i do not know how to.


First of all, You don't need to know how it is done, this is developers' responsibility.

Second, read your assignment carefully. The CUSTOMER need to communicate with you application using SSL. It is not said anything about the travel agent.
tony clare
Ranch Hand

Joined: Apr 19, 2006
Posts: 31
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
First of all, You don't need to know how it is done, this is developers' responsibility.

[Comment], I don't agree. I think it's the right responsibility of architect for the remote secure access. Using RMI over HTTPS tunnel for public network (Internet) access is not a good practice. That's the reason HTTP as a black horse in 1995 led ahead than COBRA and DCOM.

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Second, read your assignment carefully. The CUSTOMER need to communicate with you application using SSL. It is not said anything about the travel agent.
[Comment], Agree, be careful to read it. Agents are assumed to keep using the existing private network which was used for 3270 terminal access.
[ August 18, 2006: Message edited by: tony clare ]
Dan Drillich
Ranch Hand

Joined: Jul 09, 2001
Posts: 1180
Hi Samuel,

Second, read your assignment carefully. The CUSTOMER need to communicate with you application using SSL. It is not said anything about the travel agent.


Good point!

Many people simply assumed that the travel agents are on the intranet.

Regards,
Dan


William Butler Yeats: All life is a preparation for something that probably will never happen. Unless you make it happen.
Tom Adams
Ranch Hand

Joined: Feb 07, 2003
Posts: 56
Yep - I agree that the travel agent app network traffic does not need to be encrypted.

However, encrypted RMI traffic is possible. A good? option with Weblogic is to use their encrypted T3 protocol T3s. It performs much better than tunneling RMI over HTTP(s).

HTH
Tom


Tom
 
jQuery in Action, 2nd edition
 
subject: If java application talks to EJB tier directly, how to implement SSL?