Kind of a shot in the dark, but does this blog entry help at all? See
near the bottom under "Offload via JCE"
http://blogs.sun.com/sprack/entry/using_the_ultrasparc_hardware_cryptographic
-Peter
glassfish_at_javadesktop.org wrote:
> I'm trying to figure-out how to get Glassfish to use the hardware crypto accelerator on the Sun Fire T2000 servers.
>
> In Application Server 8.x, which used NSS for crypto, it was a matter of using modutil to enable the "Sun Metaslot" PKCS11 token. Docs explain this at: http://developers.sun.com/appserver/reference/techart/keymgmt.html
>
> However this doesn't work under Glassfish / SJSAS 9.1 as it no longer uses NSS for security and instead uses JKS. ie: no more secmod.db etc, but keystore.jks.
>
> I'm using SJSAS 9.1U2, JDK 1.6_07 on a T2000, and it doesn't appear to be using the T2000's ncp0 crypto accelerator for HTTPS rsa/dsa, as presumably a similar procedure to the one described for 8.x hasn't been done yet.
>
> Any ideas on how to get Glassfish/SJSAS 9.1 running with JKS for securty to use PKCS11 crypto accelerators like the ncp0 device in the T2000 ?
>
> Any suggestions would be appreciated!
> [Message sent by forum member 'coreyjohnston' (coreyjohnston)]
>
> http://forums.java.net/jive/thread.jspa?messageID=298525
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe_at_glassfish.dev.java.net
> For additional commands, e-mail: users-help_at_glassfish.dev.java.net
>
>