From beepwg-admin@lists.beepcore.org Fri Jun 4 18:11:16 2004 Received: from qawoor.dbc.mtview.ca.us (adsl-64-168-10-251.dsl.scrm01.pacbell.net [64.168.10.251]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA21198 for ; Fri, 4 Jun 2004 18:11:12 -0400 (EDT) Received: from qawoor.dbc.mtview.ca.us (localhost [127.0.0.1]) by qawoor.dbc.mtview.ca.us (8.12.10/8.12.9) with ESMTP id i54Lu6A7006534; Fri, 4 Jun 2004 14:56:06 -0700 (PDT) Received: from mail.ncsa.uiuc.edu (mail.ncsa.uiuc.edu [141.142.2.28]) by qawoor.dbc.mtview.ca.us (8.12.10/8.12.9) with ESMTP id i54LkdA7006465 for ; Fri, 4 Jun 2004 14:46:39 -0700 (PDT) X-Envelope-From: dxin@ncsa.uiuc.edu X-Envelope-To: Received: from osage.ncsa.uiuc.edu (osage.ncsa.uiuc.edu [141.142.2.56]) by mail.ncsa.uiuc.edu (8.11.7/8.11.7) with ESMTP id i54LkUx18425 for ; Fri, 4 Jun 2004 16:46:32 -0500 Received: from localhost (dxin@localhost) by osage.ncsa.uiuc.edu (8.11.7/8.11.6) with ESMTP id i54LkUm18573 for ; Fri, 4 Jun 2004 16:46:30 -0500 From: Dong Xin To: beepwg@lists.beepcore.org Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-NCSA-MailScanner-Information: Please contact the help@ncsa.uiuc.edu for more information X-NCSA-MailScanner: Found to be clean Subject: [BEEPwg] PureTLS with mutual authentication Sender: beepwg-admin@lists.beepcore.org Errors-To: beepwg-admin@lists.beepcore.org X-BeenThere: beepwg@lists.beepcore.org X-Mailman-Version: 2.0.12 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Mailing list for the IETF's BEEP working group List-Unsubscribe: , List-Archive: Date: Fri, 4 Jun 2004 16:46:30 -0500 (CDT) Hi, I was using PureTLS to achieve mutual authentication. The code was modified from beepcore-java's example. The key, certificate and trusted certificate are specified on both side. After initiation, the startTLS operation executed successfully, and the echo channel ran with no problem too. However, when I tried to use session.getPeerCredential() (right after startTLS at client side) to get the credential on the server side, the method return null. The API said getPeerCredential "may return null if this session has not been authenticated". I wonder how to verify that the TLS session has been sucessfully created and the mutual authentication is finished? I was trying to print out the subject of the certificate on the other side, is it right to use getPeerCredential()? Thanks a lot... Dong _______________________________________________ BEEPwg mailing list BEEPwg@lists.beepcore.org http://lists.beepcore.org/mailman/listinfo/beepwg From beepwg-admin@lists.beepcore.org Fri Jun 4 20:29:49 2004 Received: from qawoor.dbc.mtview.ca.us (adsl-64-168-10-251.dsl.scrm01.pacbell.net [64.168.10.251]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA29272 for ; Fri, 4 Jun 2004 20:29:47 -0400 (EDT) Received: from qawoor.dbc.mtview.ca.us (localhost [127.0.0.1]) by qawoor.dbc.mtview.ca.us (8.12.10/8.12.9) with ESMTP id i550G3A7007676; Fri, 4 Jun 2004 17:16:03 -0700 (PDT) Received: from miz-mishtal.dbc.mtview.ca.us (miz-mishtal.dbc.mtview.ca.us [64.168.10.250]) by qawoor.dbc.mtview.ca.us (8.12.10/8.12.9) with ESMTP id i550CNA7007633 for ; Fri, 4 Jun 2004 17:12:23 -0700 (PDT) Received: from [IPv6:::1] (localhost [127.0.0.1]) by miz-mishtal.dbc.mtview.ca.us (8.12.10/8.12.9) with ESMTP id i55068XS009980; Fri, 4 Jun 2004 17:06:08 -0700 (PDT) In-Reply-To: References: Mime-Version: 1.0 (Apple Message framework v618) Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: <25298DC6-B684-11D8-8A76-000A95CA7FAE@dbc.mtview.ca.us> Content-Transfer-Encoding: 7bit Cc: beepwg@lists.beepcore.org From: Marshall Rose Subject: Re: [BEEPwg] PureTLS with mutual authentication To: Dong Xin X-Mailer: Apple Mail (2.618) Sender: beepwg-admin@lists.beepcore.org Errors-To: beepwg-admin@lists.beepcore.org X-BeenThere: beepwg@lists.beepcore.org X-Mailman-Version: 2.0.12 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Mailing list for the IETF's BEEP working group List-Unsubscribe: , List-Archive: Date: Fri, 4 Jun 2004 17:06:08 -0700 Content-Transfer-Encoding: 7bit one more time: please send your email to the appropriate mailing list. this mailing list is about the beep protocol. your question should go the beepcore-java mailing list. On Jun 04, 2004, at 14:46, Dong Xin wrote: > Hi, > > I was using PureTLS to achieve mutual authentication. > The code was modified from beepcore-java's example. The key, > certificate and trusted certificate are specified on both side. > After initiation, the startTLS operation executed successfully, and the > echo channel ran with no problem too. However, when I tried to use > session.getPeerCredential() (right after startTLS at client side) > to get the credential on the server side, > the method return null. The API said getPeerCredential "may return > null if this session has not been authenticated". > > I wonder how to verify that the TLS session has been > sucessfully created and the mutual authentication is finished? > I was trying to print out the subject of the certificate on > the other side, is it right to use getPeerCredential()? > > Thanks a lot... > > Dong > > _______________________________________________ > BEEPwg mailing list > BEEPwg@lists.beepcore.org > http://lists.beepcore.org/mailman/listinfo/beepwg _______________________________________________ BEEPwg mailing list BEEPwg@lists.beepcore.org http://lists.beepcore.org/mailman/listinfo/beepwg