TLS-handshake with own random numbers in Java

2019-07-25 05:57发布

I have a a piece of hardware which realises some crypto functions like random number generation (e.g a SmartCard). I would like to use this hardware during my TLS hadshake. Is it possible to do this, without implementing the TLS-Handshake by my own?

I tried to extend the class "SecureRandom" but the "next" methode is final so I can't override it so that it will return 'my' genetrated numbers.

So basically I would like to "outsource" all the crypto functions without implementing the TLS handshake in JAVA.

Thanks

标签： java ssl smartcard handshake

1条回答

仙女界的扛把子

2楼-- · 2019-07-25 06:36

Extend SecureRandomSpi instead. Then either implement a Provider or do a cheap SecureRandom as

  public MySecureRandom() 
    throws NoSuchAlgorithmException, NoSuchProviderException {
      super(new MySecureRandom(),null);
  }

(The implementation of next relies on the given SPI)

Then pass your SecureRandom as an argument to SSLContext.init.

0人赞添加讨论(0) 举报

TLS-handshake with own random numbers in Java

采纳回答

编辑标签

举报内容

检举类型

检举原因

检举说明(必填)

打开微信“扫一扫”，打开网页后点击屏幕右上角分享按钮

付费偷看金额在0.1-10元之间