book

Java Cryptography

by Jonathan Knudsen

May 1998

Intermediate to advanced

362 pages

10h 8m

English

O'Reilly Media, Inc.

Read now

Unlock full access

VersionsFile NamingCLASSPATHVariable NamingDownloading

Masher SecretWriting
Symmetric Ciphers Asymmetric Ciphers Hybrid SystemsDistributing KeysKey Agreement Protocols
CertificatesCertificate Chains
Size Does MatterNames and NumbersMD5SHA-1HmacMD5 and HmacSHA1DSAElGamal signaturesDESDESede PBEWithMD5AndDESElGamal ciphersDH
SeederPitfalls
KeyPairGeneratorKeyGeneratorAlgorithm-Specific Initialization
SecretKeySpecSecretKeyFactoryFrom things to keysFrom keys to thingsKeyFactory
Diffie-Hellmanjavax.crypto.KeyAgreementSKIPSkipServerSkipClientSkipper: Multiparty key agreement
Key HoldersPrincipalIdentitySignerIdentityScopeKeyManager
KeyStoreGettingLoading and savingAdding private key entriesAdding trusted certificate entriesRetrieving entrieskeytoolCreating a key pairUbiquitous options and defaultsInspecting the keystoreGenerating a CSRImporting certificatesOther optionsChanging the default keystore class
GettingFeedingDigestingOne, Two, Three!Digest StreamsProtected Password LoginDouble-Strength Password Login
Setting UpFeedingCalculating the CodeFor Instance
Generating a Signature Verifying a SignatureHancockLogin, Again SignedObject
java.security.cert.Certificate Generating a CertificateVerifying a CertificateX.509SpillCertificate Revocation Lists
PaddingPKCS#5Other padding schemesModesECBCBCPCBCCFBOFBOther modes
Getting a CipherBasic InformationInitializing a CipherGenericName brandFeeding Data to a Cipher
Cipher Streamsjavax.crypto.SealedObject
Salt and VinegarTest Drive
SPISetupBasic informationInitializingFeedingBlockCipherCBCWrapperCFBWrapper
PGPS/MIMESSLSourcesUsing the browserSET
Prepare a SignerBundle the AppletSign the AppletTest the AppletSet Up the Browser
Prepare a SignerAsk for PermissionSign the AppletBundle the AppletTest the AppletSet Up the Browser
RecipePrepare a SignerBundle the AppletSign the AppletTest the Applet
Algorithm Names and ImplementationsA Simple ProviderAn Algorithm by Any Other NameInstalling the Provider
Key Pair GenerationSignatureCipher
Key ClassesElGamalKeyPairGenerator
First-Time SetupExporting a KeyImporting a KeyStarting a ConversationReceiving a ConversationLoopback Testing
ArchitectureSessionSessionServerReceiverSafeTalk
First-Time SetupPreferencesKeysGetting and Reading MailSending Mail
ArchitectureMessage FormatMessagePOP3SMTPComposerCipherMail
Self-ContainedDemonstration SoftwareClient/ServerClient AppletsAccess Control
SerializationDeleting FilesVirtual MemoryMemory Scanning

Content preview from Java Cryptography

File Security

The files on a local disk can be vulnerable to theft or modification. If you’re running any sort of server software, of course, you shouldn’t keep anything private on the server machine. Even a machine without server software, however, is vulnerable to viruses, Trojan horses, and other types of skullduggery. It doesn’t do much good to encrypt all your communications if someone can pull files off your local disk.

If you’re especially paranoid, you should encrypt any sensitive files on your local disk. Keep the key on a removable disk or a smart card, or use a passphrase (but don’t write it down anywhere!).

Serialization

JDK 1.1 introduced the technique of object serialization , where Java objects can be written to streams and read from streams. By itself, object serialization offers nothing in the way of security. If you write objects out to a file, it’s pretty easy for almost anyone to read the file and find out what’s in it. Several of the examples in this book, for example, serialize a key to a file for later use. This offers no protection for the key, as it is stored in the clear in the file. To protect sensitive data, you can combine object serialization with an encrypted data stream (that is, wrap an ObjectOutputStream around a CipherOutputStream). Alternately, you might use a javax.crypto.SealedObject (see Chapter 7).

Deleting Files

A more subtle security risk comes from deleted files. Suppose you receive an encrypted message from a fellow freedom fighter. Naturally, ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Hands-On Cryptography with Java

Erik Costlow

Cryptography and Cryptanalysis in Java: Creating and Programming Advanced Algorithms with Java SE 17 LTS and Jakarta EE 10

Stefania Loredana Nita, Marius Iulian Mihailescu

Java Security Handbook

Jamie Jaworski, Paul J. Perrone, Venkata S.R. Krishna Chaganti

Java Security, 2nd Edition

Scott Oaks

Publisher Resources

ISBN: 1565924029Supplemental Content Errata Page