Re: [GNU Crypto] how to deal with weak keys. was: Documentation

[Casey Marshall]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thu, May 29, 2003 at 05:07:31AM +1000, Raif S. Naffah wrote:

> On Thu, 29 May 2003 05:00 am, Casey Marshall wrote:
> >
> > It would probably be more appropriate to have a class in gnu.crypto
> > that contains static methods such as set/getProperty, so we can use a
> > PropertyPermission check before querying/setting these (sometimes
> > sensitive) properties.
> 
> if we do that we lose the conditional compilation benefit.  for 
> performance reasons mostly, and security secondly i'd rather have them 
> as static finals.
> 

I don't think conditional compilation is a particularly good idea; it's
inelegant, and can easily lead to obscure incompatibility bugs.

I would prefer using a properties class because (1) no-one will care
about, or even notice, any performance boost; (2) the security aspects
of these properties can be handled with the access-control methods
already implemented in Java (unless we regard Java's security model as
merely cosmetic); and (3) it just seems like the "Java way" to do it.

- -- 
Casey Marshall || address@hidden
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQE+1T24gAuWMgRGsWsRAuFgAJ9SIoIftZ4ShssCkRl0tDFYiPyDcgCfWGj6
rzkaYf+l7u4mGR/vyHGoCXM=
=Jkne
-----END PGP SIGNATURE-----