jscep | Java implementation of the Simple Certificate Enrolment | TLS library

 by   jscep Java Version: jscep-2.5.6 License: MIT

kandi X-RAY | jscep Summary

kandi X-RAY | jscep Summary

jscep is a Java library typically used in Security, TLS applications. jscep has build file available, it has a Permissive License and it has high support. However jscep has 5 bugs and it has 7 vulnerabilities. You can download it from GitHub.

jscep
Support
    Quality
      Security
        License
          Reuse

            kandi-support Support

              jscep has a highly active ecosystem.
              It has 100 star(s) with 81 fork(s). There are 14 watchers for this library.
              There were 1 major release(s) in the last 12 months.
              There are 4 open issues and 63 have been closed. On average issues are closed in 363 days. There are 2 open pull requests and 0 closed requests.
              It has a neutral sentiment in the developer community.
              The latest version of jscep is jscep-2.5.6

            kandi-Quality Quality

              jscep has 5 bugs (0 blocker, 1 critical, 2 major, 2 minor) and 140 code smells.

            kandi-Security Security

              jscep has no vulnerabilities reported, and its dependent libraries have no vulnerabilities reported.
              OutlinedDot
              jscep code analysis shows 7 unresolved vulnerabilities (0 blocker, 7 critical, 0 major, 0 minor).
              There are 1 security hotspots that need review.

            kandi-License License

              jscep is licensed under the MIT License. This license is Permissive.
              Permissive licenses have the least restrictions, and you can use them in most projects.

            kandi-Reuse Reuse

              jscep releases are available to install and integrate.
              Build file is available. You can build the component from source.
              Installation instructions are not available. Examples and code snippets are available.
              jscep saves you 3116 person hours of effort in developing the same functionality from scratch.
              It has 6709 lines of code, 548 functions and 139 files.
              It has low code complexity. Code complexity directly impacts maintainability of the code.

            Top functions reviewed by kandi - BETA

            kandi has reviewed jscep and discovered the below as its top functions. This is intended to give you an instant insight into jscep implemented functionality, and help decide if they suit your requirements.
            • Services the request
            • Decodes the provided CMCS signed data
            • Gets the CA certificate
            • Gets the next CA certificate
            • Sends the request and processes the signature
            • Converts a Bouncy Castle signed data into a CertStore
            • Gets the signed data from the given content
            • Checks if the provided signed data is signed by the given certificate
            • Analyze the certificate entities
            • Selects the certificate of the SCEP message object
            • Get the capabilities for the given content
            • Validates the input
            • Verify the delegate certificate
            • Returns a list of cared certificates
            • Returns a set of XCertSelectors for the subject DN
            • Return the DER - encoded DERSequence
            • Returns an instance of CertStoreInspector
            • Returns the instance of the CertStoreInspector
            • Returns an ASN object identifier for the given encoder
            • Returns an instance of the CertStore for the given content
            • Gets the signer selectors
            • Gets the recipients
            • Sends a request
            • Verifies the message digest
            • Verifies the provided certificate
            • Gets the recipient selectors
            Get all kandi verified functions for this library.

            jscep Key Features

            No Key Features are available at this moment for jscep.

            jscep Examples and Code Snippets

            No Code Snippets are available at this moment for jscep.

            Community Discussions

            QUESTION

            JSCEP-Wrong 3rd argument type. Found: 'org.spongycastle.pkcs.PKCS10CertificationRequest', required: 'org.bouncycastle.pkcs.PKCS10CertificationRequest'
            Asked 2019-Jun-11 at 22:54

            I'm implementing Jscep for android. Initially, I tried Jscep for java and it worked fine. Now in Android, I used SpongyCastle instead of BouncyCastle. Now my problem is that the enrol method of Client class is using BouncyCastle. And so when I try to pass in the arguments, the spongycastle and bouncycastle are not fitting (obviously).

            The following extends spongycastle.

            ...

            ANSWER

            Answered 2019-Jun-11 at 22:54

            My question is "Should I switch back to BouncyCastle jars?". Or else "How can I pass this spongycastle variable?"

            Probably neither will work on on all Android platforms

            From what I have seen, Jscep works with (genuine) BouncyCastle not SpongyCastle.

            If I read this old issue correctly, the cut-down version of BouncyCastle in pre-3.0 Android is missing functionality that Jscep needs.

            • For pre-3.0 Android their doesn't appear to be a practical solution. You can't just tell Java to treat those two types as equivalent. It would break the JVM / Davlik runtime type system.

            • According to this StackOverflow Q&A, in 3.0 Android changed the Java package name on their cut-down BouncyCastle. That means that you should be able to bundle genuine BouncyCastle JARs with a 3.0+ Android app. That should be sufficient to get Jscep to work on that platform.

              This SpongyCastle issue comment says that the trick to getting Android to use the genuine BouncyCastle functionality is:

              ... call Security.removeProvider(BouncyCastleProvider.PROVIDER_NAME) to remove the built-in BC before calling Security.addProvider(new BouncyCastleProvider()).

            • In theory, it should be possible to port Jscep to use SpongyCastle, but there are no clear indications that anyone has succeeded in doing this. (Given the previous, the need for such a port is only diminishing.)

            Also, I couldn't find a free-standing alternative to the Jscep that worked on Android. However, I did find this:

            which might be useful.

            Source https://stackoverflow.com/questions/56544185

            QUESTION

            How to use a maven project jar in a normal java project
            Asked 2019-May-14 at 12:12

            I've converted a maven project to a jar and now, I'm trying to import this jar to the library of a new non-maven project.

            I've tried to write main method on my own in order to call the maven jar classes (I'm a beginner to maven, so I don't know if this is possible). But it didn't work. And even though in the pom.xml, the packaging is set to jar, no jar is created once I install that maven project. So, using INTELLIJ, I exported the jar using the project structure tab. This is the pom.xml

            ...

            ANSWER

            Answered 2019-May-14 at 12:12

            You can use the maven jar plugin to create a jar right from maven: https://maven.apache.org/plugins/maven-jar-plugin/

            You can add any jar as a dependency to a non-maven project. For IntelliJ, refer to this answer: Correct way to add external jars (lib/*.jar) to an IntelliJ IDEA project

            Source https://stackoverflow.com/questions/56130078

            QUESTION

            OpenXPKI with JSCEP to request CRL
            Asked 2017-May-30 at 09:40

            I am trying to obtain the CRL from an OpenXPKI server (the default configuration is used). Requesting and polling of a certificate is possible.

            On the OpenXPKI server, I revoked some certificate, created the CRL and published the list. To obtain the CRL I tried different approaches.

            First approach:

            ...

            ANSWER

            Answered 2017-May-30 at 09:40

            I solved the problem with the help of the JSCEP and OpenXPKI communities. The problem is that the DN of the issuer is reversed, this means e.g. CN=CA,OU=Test CA,DC=OpenXPKI,DC=ORG is changed to DC=ORG,DC=OpenXPKI,OU=Test CA,CN=CA ONE and the getCRL from the OpenXPKI has no entry for the reversed issuer.

            An easy fix is to reverse the issuer for the getCRL request (check OpenXPKI fix) by changing the code from the get_getcrl_issuer_serial.pm file. Add the following code in line 107:

            Source https://stackoverflow.com/questions/44044057

            QUESTION

            JSCEP with X509Certificate and Attribute Certificate
            Asked 2017-Apr-25 at 22:08

            I want to use JSCEP with Attribute Certificates (ACs), they are part of X.509. When I check the Java libraries. In the java.security.cert package a abstract X509Certificate is contained but this certificate inherits a getPublicKey method from java.security.cert.Certificate, which is not part of an AC.

            My questions:

            • Could the X509Certificate be used without a public key. So that no problems in the other java classes like JcaX509CertificateConverter appear?
            • Should I implement a own AttributeCertificate class, which does not inherit from java.security.cert.Certificate?
            • What would be the best practice approach?
            ...

            ANSWER

            Answered 2017-Apr-25 at 22:08

            The X509Certificate class represents a Public Key Certificate (PKC), while an Attribute Certificate (AC), although it's a similar (but not that much) structure, has no public key. And they're not the same thing.

            A X509Certificate can't be used without a public key, because the key is part of it. If you take a look at the RFC's definition, you'll see it's a mandatory field:

            Source https://stackoverflow.com/questions/43585819

            Community Discussions, Code Snippets contain sources that include Stack Exchange Network

            Vulnerabilities

            No vulnerabilities reported

            Install jscep

            You can download it from GitHub.
            You can use jscep like any standard Java library. Please include the the jar files in your classpath. You can also use any IDE and you can run and debug the jscep component as you would do with any other Java program. Best practice is to use a build tool that supports dependency management such as Maven or Gradle. For Maven installation, please refer maven.apache.org. For Gradle installation, please refer gradle.org .

            Support

            For any new features, suggestions and bugs create an issue on GitHub. If you have any questions check and ask questions on community page Stack Overflow .
            Find more information at:

            Find, review, and download reusable Libraries, Code Snippets, Cloud APIs from over 650 million Knowledge Items

            Find more libraries

            Stay Updated

            Subscribe to our newsletter for trending solutions and developer bootcamps

            Agree to Sign up and Terms & Conditions

            Share this Page

            share link