还是不太清楚Re: Java JCE的疑问 - 未名空间MITBBS历史存档

国际科技财经博客移民网络热点娱乐民生时事公众号

Redian新闻

>未名空间

>Java - 爪哇娇娃

还是不太清楚Re: Java JCE的疑问

还是不太清楚Re: Java JCE的疑问# Java - 爪哇娇娃

w*r2005-02-16 08:02

1 楼

37:36 耶和华的使者出去，在亚述营中杀了十八万五千人。
清早有人起来一看，都是死尸了。
I am very curious how this event is recorded in historical documents. How
did God's angels kill so many people in one night? Please share with me if
any brother or sister knows. Thanks.

s*n2005-02-16 08:02

2 楼

是不是java的Cryptography扩展库的source是不公开的。想看看内部实现的代码，在JDK1
我是初学者，有点看还是不懂你的答复.
既然是proprietary,是不是sun就肯定不开放provider的SPI接口source，但是不是开放AP
I的source了呢?
我的问题详细是
我下载的JDK1.4中,可以打开例如,JAVA.AWT的类代码,但对于jce.jar和sunjceprovider.j
ar里面的类例如javax.crypto.cipher和就找不到对应的代码.
推广开来,是不是带com.sun.*的包就不带代码呢?

E*m2005-02-16 08:02

3 楼

37:36 Then the angel of the LORD went forth, and smote in the camp of the
Assyrians a hundred and fourscore and five thousand: and when they arose
early in the morning, behold, they were all dead corpses.
這些人起床後發現自己都死了。
當然，照例沒有任何歷史紀錄。

m*t2005-02-16 08:02

4 楼

AP
我下载的JDK1.4中,可以打开例如,JAVA.AWT的类代码,但对于jce.jar和sunjceprovider.j
I think that's correct. Also as far as encryption related stuff is
concerned, I can imagine there would also be the export control issue
that prevents Sun from distributing the source code.

【在 s********n 的大作中提到】

:
: 是不是java的Cryptography扩展库的source是不公开的。想看看内部实现的代码，在JDK1
: 我是初学者，有点看还是不懂你的答复.
: 既然是proprietary,是不是sun就肯定不开放provider的SPI接口source，但是不是开放AP
: I的source了呢?
: 我的问题详细是
: 我下载的JDK1.4中,可以打开例如,JAVA.AWT的类代码,但对于jce.jar和sunjceprovider.j
: ar里面的类例如javax.crypto.cipher和就找不到对应的代码.
: 推广开来,是不是带com.sun.*的包就不带代码呢?

w*r2005-02-16 08:02

5 楼

The intention of my post is to discuss with brothers and sisters in Christ,
not non-Christians. So please don't reply my post with blasphemy. Thanks.

s*n2005-02-16 08:02

6 楼

How can you trust sun's code for cipher if you cannot see what is going on
inside and if any trick in its library.
I do not know if anyone can use its library for sensitive communications
without knowdge of source. How people or companys deal with this case?
Any clues, Thanks

x*a2005-02-16 08:02

7 楼

两个 they 指代的不一样吧，又不是都杀尽了。还有几个活的。

m*t2005-02-16 08:02

8 楼

Well how can you trust anything if you have to see
its source code first? 8-) Let's say you manage to find
the source code for Sun's package, how do you know the JVM
isn't doing anything funny?

【在 s********n 的大作中提到】

: How can you trust sun's code for cipher if you cannot see what is going on
: inside and if any trick in its library.
: I do not know if anyone can use its library for sensitive communications
: without knowdge of source. How people or companys deal with this case?
: Any clues, Thanks

m*u2005-02-16 08:02

9 楼

Thanks for sharing

【在 w**********r 的大作中提到】

: 37:36 耶和华的使者出去，在亚述营中杀了十八万五千人。
: 清早有人起来一看，都是死尸了。
: I am very curious how this event is recorded in historical documents. How
: did God's angels kill so many people in one night? Please share with me if
: any brother or sister knows. Thanks.

s*n2005-02-16 08:02

10 楼

You are right, it is hard for trust. But it also hard to ignore trust for
critical apps. Maybe that is why some opensource alternatives are initiated.
Anyway, it is so nice talking this with you.

【在 m******t 的大作中提到】

:
: Well how can you trust anything if you have to see
: its source code first? 8-) Let's say you manage to find
: the source code for Sun's package, how do you know the JVM
: isn't doing anything funny?