cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Cryptographic Library (IAIK) shows as "weak" strength in AS JAVA

Go to solution
george_hamilton
Participant

on ‎09-13-2007 11:40 PM

0 Kudos

I'm trying to debug a problem with the communication of the JAVA stack with another system (Apache). I've noticed that in the Visual Admin under

Dispatcher --> Libraries --> IAIKSecurity --> Info

It lists

"core_lib" as strength "weak" and

"tcsecssl" as strength "weak"

I also see this under the Dispatcher --> services --> SSL Provider --> Additional Info tab.

"IAIKSecurity" as "weak".

I have downloaded the unlimited strength IAIK (JCE) files and put them in the JRE. I have also installed the SAP Cryptographic libraries on the UNIX level. According to the NW07 docs, the IAIK was deployed on installation. What is missing here? Or is this normal? Help is appreciated.

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

norbert_sieker
Explorer
‎09-14-2007 12:14 PM
0 Kudos

Hi George,

this refers to the library reference and is totally ok.

It means that there is a weak reference to the IAIK library (and not a hard reference).

It does not mean that you are running in weak cryptographic mode. That's completely unrelated.

Norbert

Show replies
Show replies
george_hamilton
Participant
‎09-14-2007 2:52 PM
0 Kudos

Thanks guys. I had already verified that the policy files were fine. What I was looking for was the library reference information.

Answers (1)

Answers (1)

Former Member
‎09-14-2007 7:38 AM
0 Kudos

Hi,

The policy files are located in archive files,

<JDK_HOME>/jre/lib/security/local_policy.jar

Executing,

C:\j2sdk1.4.2_03>bin\jar -tvf C:\j2sdk1.4.2_01\jre\lib\security\local_policy.jar

in command line gives the list of local policy files.

The content of the META-INF/MANIFEST.MF file will give the jurisdiction policy in effect. Only when this file contains property Crypto-Strength: unlimited, they are "unlimited/full strength", otherwise they are "limited/full strength" jurisdiction policies.

For further details refer SAP Note 739043

Regards

Srinivasan T

Show replies
Show replies
Ask a Question