<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2800.1555" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>Hi,</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I'm new to the list and apologize if this question
is inappropriate, or quite basic, but I really hope someone can
help.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I currently have an intranet-resident JAVA Applet
that connects back to the<BR>Application Server via standard TCP/IP sockets
using the java.net.Socket<BR>class, and everything is peachy. What I'm looking
at doing now is making it<BR>Internet friendly by providing host authentication
(don't care about client<BR>authentication at the mo) and strong cryptography
between client and server.<BR><BR>OpenSSL and Stunnel (I don't want to have to
make the Application Server SSL<BR>compatible if I don't have to) are available
on the server box therefore I<BR>would dearly love an example of a JAVA client
that can talk javax.net.SSL<BR>(or something else) to a Stunnel-fronted server.
(Less is definitely more<BR>here - The least number of client keys and or
certificate-generations the<BR>better!)<BR><BR>Can anyone please help me with
this? Obviously example-code would be ideal,<BR>as would first-hand accounts of
the trials and tribulations, but I'll<BR>certainly settle for web-references to
the appropriate docs or other<BR>relevant material!<BR><BR>Are all the
JSSE libraries/code reqd bundled with the JDK and runtime JVM
ready?<BR><BR>Is there a better way? (Sadly IPsec is not an option here) Maybe
there's an<BR>alternate solution that can preserve the client's true IP address
and<BR>present it to the Application Server's "Listen"?<BR><BR>Cheers Richard
Maher<BR><BR></FONT></DIV></BODY></HTML>