stackoom
  简体   繁体   中英

Can Netty be configured to use OCSP?

 原文  2015-12-02 23:30:56       java/ netty/ ocsp

Question

I currently use Netty 3.9.5 and I want to use OCSP (Online Certificate Status Protocol) to verify a PKI certificate. I have only found Java examples using a local keystore to check the authentication of a certificate. Since I am new to the SSL/TLS world, I am hoping that this is a lack of knowledge on my part. Does Netty 3.x or 4.x support the use of OCSP or is this something I will need to add myself? Are there any NIO frameworks that support OCSP?

1 answers

solution1
 0  2015-12-09 18:19:43

You will need to add this yourself by implementing the javax.net.ssl.TrustManagerFactory interface which will do the OCSP validation. There is some code in this class here you maybe able to use to do the OCSP validation.

If you take a look at the Netty HttpSnoopClient.java example it shows you how to register your custom ssl TrustManager in line 65.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question What is the use of the responderID in the OCSP response? how to use proxy in OCSP request Configure tomcat to use Java 9 native OCSP stapling and OCSP check Can I use DelimiterBasedFrameDecoder and LengthFieldBasedFrameDecoder together in Netty? How can I use an EventExecutorGroup with an NioDatagramChannel in Netty? Using a Reactor Netty HttpClient, how can the client be configured to send more that one item using a Flux publisher to a server? How to use OCSP responses in validation of CertPath When we use our own thread pool, Can netty be thread safe? if netty can, Why? How to cache and update CRL (certificate revokation list)/OCSP responses in SSL configured tomcat? Simple use of Netty with RestEasy
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM