Chapter 4 Section 4.1
Operating SSL Overview
HTTPS eWay Adapter User’s Guide 28 Sun Microsystems, Inc.
Figure 8 General SSL Operation: HTTPS
This SSL feature is supported through the use of JSSE version 1.0.3.
Currently, the JSSE reference implementation is used. JSSE is a provider-based
architecture, meaning that there is a set of standard interfaces for cryptographic
algorithms, hashing algorithms, secured-socket-layered URL stream handlers, and so
on.
Because the user is interacting with JSSE through these interfaces, the different
components can be mixed and matched as long as the implementation is programmed
under the published interfaces. However, some implementations may not support a
particular algorithm.
The JSSE 1.0.3 application programming interface (API) is capable of supporting SSL
versions 2.0 and 3.0 and Transport Layer Security (TLS) version 1.0. These security
protocols encapsulate a normal bidirectional stream socket and the JSSE 1.0.3 API adds
transparent support for authentication, encryption, and integrity protection. The JSSE
reference implementation implements SSL version 3.0 and TLS 1.0.
For more information, visit the Sun Java Web site at the following URL:
http://java.sun.com
Note: See the JSSE documentation provided by Sun Microsystems for further details.
Web Server
POST / GET
Response
SSL Communication Channel
TrustStore KeyStore
Trusted CA
Certificates
Certificate &
CA Certificate
Chain
Private
Key
Hacker
Man-in-Middle Attack:
Cannot break secured channel
HTTP(S) eWay
