Author Archives: tt4cs

About tt4cs

I am a post-sale service engineer working in Tokyo for a Singapore-based software development company, which provides authentication and access management solutions for global and regional financial institutions in Asia-Pacific region.

A few other ways to configure DH parameters

I initialized the key pair generator by specifying the modulus p and the generator g in my last post. There are a few other ways. Javadoc for KeyPairGenerator class says in its preface, There are two ways to generate a … Continue reading

Posted in Cryptography, Java | Tagged , | Leave a comment

Diffie-Hellman 2048-bit MODP now supported by JDK 8

Diffie-Hellman key pair generator provided by Sun’s JCE provider had been rejecting prime number modulus whose size is more than 1024 bits. In JDK 7 and earlier, the size must be a multiple of 64 that ranges from 512 and … Continue reading

Posted in Cryptography, Java | Tagged , | Leave a comment

LDAP over SSL/TLS and StartTLS

There are two approaches to make secure connections to LDAP servers. One is LDAP over SSL/TLS (LDAPS) and the other is StartTLS. I have quickly tried them by using Apache Directory LDAP API (version 1.0.0-M20) and UnboundID LDAP SDK for … Continue reading

Posted in Java, LDAP | Tagged , , , | Leave a comment

Which is your best, Apache or UnboundID?

What is your most favorite library to use when you want to write something to do with LDAP servers in Java language? LDAP Java library – Stack Overflow lists four choices: JNDI (Java Naming and Directory Interface), Spring LDAP, Apache … Continue reading

Posted in Java, LDAP | Tagged , | 1 Comment

Installation of OpenLDAP on Debian Wheezy

This article briefly describes how I have set up OpenLDAP server on my Debian GNU/Linux machine. I hope it could be of any help to somebody interested in this topic.

Posted in LDAP | Tagged , | Leave a comment