tags:

views:

64

answers:

1
+2  Q: 

ColdFusion 8 Diffie-Helman Encryption

I am integrating with a 3rd party that requires I use the Diffie-Hellman encryption algorithm. The CF docs indicate that this is a supported algorithm.

When I attempt to call Encrypt() with either "Diffie-Helman" or "DH" I get the error message: "The Diffie-Hellman algorithm is not supported by the Security Provider you have chosen."

Is it possible to configure CF to use a different Security Provider that would include DH? Or, Is it possible to use java objects directly to accomplish this?

+4  A: 

The Diffie-Hellman algorithm is only supported by Enterprise edition.
(this is documented in the page you linked to, but it's not entirely clear)

If you only have Standard edition then you'll need to find an existing Java implementation you can use with createObject('java','...'), or maybe reimplement one with pure CFML.

If you do the latter, it would be great to share the code on riaforge/github/wherever, so other CFML users can benefit.

Peter Boughton  2010-09-03 17:20:28
According to http://stackoverflow.com/questions/745921/whats-the-difference-between-coldfusion-developer-edition-and-enterprise-edition it seems that the developer edition is a limited simultaneous connection version of the enterprise edition. If that is in fact the case, then DH should work, but what I'm getting at is that i don't think DH is actually implemented despite what the docs say. So, I think i will need a work around.
Howie Ross  2010-09-03 17:43:41
no, encryption algorithm is not even accessible from Std ed.
Henry  2010-09-03 18:40:56
Howie, developer edition is only useful for _development_. Not only that, but it violates the terms of service to use it for production usage (even if the access limitations are acceptable for your production environment). Henry, don't confuse Developer edition with Standard edition. The feature should be accessible using **Developer Edition** (which Howie mentioned), for testing/proof-of-concept, but will not be at all accessible in Standard Edition. At any rate, Peter is correct about your options.
Adam Tuttle  2010-09-05 20:11:26
We use enterprise on our production servers but I need to be able to test this functionality (if it exists) in the developer edition. If this cannot be done with built in CF functions, Can you recommend a specific Java implementation to use instead?
Howie Ross  2010-09-07 14:10:17

related questions

Java Time Zone is messed up
Eclipse on win64
Automate builds for Java RCP for deployment with JNLP
Why are professors or schools picking Java over C++ to teach to students?
Is there a real benefit of using J#?
Public/Popular Websites using JavaServer Faces
Why can't I use a try block around my super() call?
Accessing post variables using Java Servlets
Personal Linux web server
Is this really widening vs autoboxing?
How can I Java webstart multiple, dependent, native libraries?
Why can't I call toString() on a Java primitive?
How do I use Java to read from a file that is actively being written?
What code analysis tools do you use for your Java projects?
IllegalArgumentException or NullPointerException for a null parameter?
How do I configure and communicate with a serial port?
What is the best way to parse strings in Java
Getting started with a custom JXTA PeerGroup
Creating a custom button in Java
How to get started "writing" a code coverage tool?
Which Build-/Configuration Management Tool?
What is the difference between an int and an Integer in Java/C#?
What is the meaning of the type safety warning in certain Java generics casts?
How would you access Object properties from within an object method?
Converting CSV File to XML in Java