B
Boris Gruschko
According to the Sun alert Nr 57436
( see: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57436
)
the Verisign Level 2,3 root certificates wil expire on January the 7th
2004.
The implications are that signed code can not be verified anymore and
that the JRE is not able to establish an SSL connection if the default
security provider is being used.
May be I am wrong, but I think, that the implications of this are
somehow being overseen by the majority of java developers and system
administrators.
I think, that there will be a tremidous number of systems which will
be affected by this expiration. The users of this systems may very
well overread the tiny alert on sun's site, or not even consider
looking there untill January the 7th.
I would like to discuss this topic and to see my view of the
implications being prooved wrong, since the implication from my point
of view is, that numerous systems will fail to comply with their
duties on 7th January and will through exceptions instead.
Especially the users of application servers who rely on handling the
SSL connections through the JSSE and not outsource such duties to the
apache or any other HTTP server may see their machines fail.
so long...
Boris Gruschko
( see: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57436
)
the Verisign Level 2,3 root certificates wil expire on January the 7th
2004.
The implications are that signed code can not be verified anymore and
that the JRE is not able to establish an SSL connection if the default
security provider is being used.
May be I am wrong, but I think, that the implications of this are
somehow being overseen by the majority of java developers and system
administrators.
I think, that there will be a tremidous number of systems which will
be affected by this expiration. The users of this systems may very
well overread the tiny alert on sun's site, or not even consider
looking there untill January the 7th.
I would like to discuss this topic and to see my view of the
implications being prooved wrong, since the implication from my point
of view is, that numerous systems will fail to comply with their
duties on 7th January and will through exceptions instead.
Especially the users of application servers who rely on handling the
SSL connections through the JSSE and not outsource such duties to the
apache or any other HTTP server may see their machines fail.
so long...
Boris Gruschko