Re: IPsec and Java

["Chinna N.R. Pellacuru" <pcn@cisco.com>]

I think Java runs at the application layer, and you can write applications
or protocols sometimes in or mostly above layer 4 using Java.

It probably won't be pretty to implement IPsec (which is somewhat in and
all around layer 3, the IP layer,) using Java. I suppose you could do
funky things with raw sockets, static routing, loopback interfaces and
somehow process all IP packets that are going out and coming in.

It should be straight forward to implement IKE in Java though, because IKE
runs over UDP.

Ofcourse, my above assumptions are based on my understanding of "Java" as
it existed some years ago, and I am not sure if the fundamental layering
of "Java" changed since then.

    chinna

On Thu, 25 Apr 2002, Dan McDonald wrote:

> > Does anybody know if there exists a Java IPsec implementation?
> > (And if it is open source/)
>
> Not that I'm aware of...
>
> I'm assuming you mean a Java implementation of the IPsec protocols, plus a
> policy engine of some kind.  I am not aware of any such implementation, but
> don't let that sun.com address fool you - I'm no Java wizard.  There may be
> one out there, I'm not just aware of any.
>
> Or do you mean something like extensions to Java sockets so that they can
> protect network traffic with IPsec?  I am also not aware of any such
> implementation, but I am _very_ interested in at least getting Solaris-style
> IP_SEC_OPT functionality out to Java, if not something (much) better.
>
> Dan
>

_____
chinna narasimha reddy pellacuru