aspose file tools*
The moose likes Security and the fly likes Need secure jdbc connection with sql server 2005 Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Engineering » Security
Bookmark "Need secure jdbc connection with sql server 2005" Watch "Need secure jdbc connection with sql server 2005" New topic
Author

Need secure jdbc connection with sql server 2005

Ankur Chourasia
Greenhorn

Joined: Nov 25, 2011
Posts: 1

Hey All,

I am new in ssl certification and all related issues. I have asked by my manager to make secure jdbc connection with database. i don't have signed certificate in sql server 2005 and can not purchase for development enviornment. HAND SHAKING is important in connection. How can i do this, i've already goggled for 3 days for the same. I need:
1. Free or trail version signed certificate for sql server 2005.
2. Installation process in remote and local machine.

I have tried comodo for free certificate but they are not support on local domain/sytem IP address they required public IP and also not provide database certificates.

I don't know whether this is correct way to connect securely or not. Please help on this.

Any help would be appriciated.

Thanks,
Ankur
Vijitha Kumara
Bartender

Joined: Mar 24, 2008
Posts: 3855

Welcome to the CodeRanch!

Moved to Security forum.


SCJP 5 | SCWCD 5
[How to ask questions] [Twitter]
Arshad Noor
Ranch Hand

Joined: Oct 06, 2011
Posts: 34
I would strongly recommend reading this white-paper from Mozilla's website; it is one of the best introductions to Public Key Cryptography I have seen in 12+ years: https://developer.mozilla.org/en/Introduction_to_Public-Key_Cryptography.

Once you've done that, for testing purpose, use keytool - which is part of the JDK - and generate your own certificates: client and server. And then follow the instructions provided by Microsoft to configure the server certificate for the DB along with the ClientAuth option turned ON. Use the client certificate with the tool you want and then test your connection. If you've done this correctly, you should have a secure connection between the client and the server.

If this DB serves only an internal application, then you can continue to use the keytool-generated keys/certificates without having to buy one from any Certification Authority.

Arshad Noor
StrongAuth, Inc.
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Need secure jdbc connection with sql server 2005