support: Customer Portal
Focused on delivering choice, investment protection and flexibility to organizations with valuable COBOL assets
 

Veryant Knowledge Base
Home > All Categories > isCOBOL General > Did you know you can encrypt the communication with the isCOBOL Server?
Question Title Did you know you can encrypt the communication with the isCOBOL Server?

isCOBOL Server can be configured to encrypt the data transmitted on the TCP/IP connection. isCOBOL Server relies on JSSE (JavaTM Secure Socket Extension) for communication. In the Sun/Oracle version you need to also get the JCE (JavaTM Cryptography Extension) in order to get unlimited strength cryptography. In the JSSE specification, certificates are stored in a file called keystore. Thus you need to have a keystore with a key entry (with both private and public keys) on the server side, and a trusted certificate entry on the client side. JavaTM supports the JKS (JavaTM KeyStore) format, and it may contain both key entries and trusted certificate entries. In order to handle this file format, the command line program keytool is provided with the standard JDK distribution. The keytool program is located in the bin directory under the JavaTM Home. For the sake of simplicity let's assume that we can invoke keytool supplying only the name. To create a new keystore from scratch, containing a single self-signed Certificate, execute the following from a terminal command line:

keytool -genkeypair -alias iscobol -keyalg RSA -keystore myKeystore

After executing this command, you will first be prompted for the keystore password. You can choose any password you like, at least 6 characters long. Then you will be asked about general information on this Certificate, such as company, contact name, and so on. This information will be displayed to users who attempt to access a secure page in your application, so make sure that the information provided here matches what they will expect. Finally, you will be prompted for the key password, which is the Certificate specific password (as opposed to any other Certificates stored in the same keystore file). The keytool prompt will tell you that pressing the ENTER key automatically uses the same password for the key as the keystore. The JSSE framework, and isCOBOL by consequence, requires these passwords to be identical. If everything was successful, you now have a new file, named myKeystore under the working directory. Now you can establish a secure connection between client and server as follows. In the server configuration file set:

iscobol.net.ssl.key_store=/path/to/myKeystore
iscobol.net.ssl.key_store_password={choosen-password}

In the client configuration file set:

iscobol.net.ssl.trust_store=/path/to/myKeystore
iscobol.net.ssl.trust_store_password={choosen-password}
Authored by: Veryant Support This question has been viewed 3600 times so far.
Click Here to View all the questions in isCOBOL General category.
File Attachments File Attachments
There are no attachment file(s) related to this question.
How helpful was this article to you?
User Comments User Comments Add Comment
There are no user comments for this question. Be the first to post a comment. Click Here
Related Questions Related Questions
  1. How do I compile for compatibility with older versions of Java?
  2. When can I get the "java.net.SocketException: Permission denied:connect" message? And how can it be avoided?
  3. How do I resolve "code too large for try statement" errors?
  4. How do I migrate indexed files to a format that is supported by isCOBOL?
  5. How do I prevent hackers from decompiling Java class files to reverse engineer my COBOL application?
  6. How can I read an Excel spreadsheet from COBOL?
  7. Does SET ADDRESS OF X TO Y work?
  8. What Micro Focus library routines are supported?
  9. How do I create a desktop shortcut icon to launch my program?
  10. Do I need to worry about the compile warning "Note: MYPROG.java uses unchecked or unsafe operations?"
  11. What tools are available for automated functional (regression) testing of a COBOL application?
  12. Did you know you can create temporary files in memory?
  13. Where can I obtain a copy of the ANSI 2002 COBOL standard?
  14. Is there currently a way to debug COBOL and Java source together?
  15. How do I increase the maximum Java heap size when compiling?
  16. How do I turn on debug trace to produce a log file?
  17. How do I determine what properties are set?
  18. Should I use JISAM or Veryant's c-treeRTG?
  19. How would I create my own CBL_ALLOC_MEM and CBL_FREE_MEM routines?
  20. Why do I get a compile error "--S: Invalid open mode" on an OPEN I-O of an ORGANIZATION LINE SEQUENTIAL file?
  21. What is the best way to control Microsoft Word?
  22. How can I use the F10 key in my application without it changing the keyboard focus?
  23. How do I use conditional compilation?
  24. How do I specify properties or a properties file on the command line?
  25. Where can I find more information on A$ENCRYPT and A$DECRYPT?
  26. How do I change the icon in the upper left corner of the Window?
  27. Does isCOBOL work with Flexus COBOL sp2?
  28. How does a program detect at runtime whether it is running standalone GUI, thin client or with Web Direct 2.0?
  29. What is the behavior difference of STOP THREAD?
  30. What are the defaults for the DATE-ENTRY control DISPLAY-FORMAT property and format styles?
  31. Sending SMTP mail
  32. How would I create my own CBL_CHECK_FILE_EXIST routine?
  33. Is the isCOBOL 2009 SP1 release intended to deploy mainframe applications over the cloud? Or is it an integration mechanism for bringing in cloud data and apps?
  34. How do I select 11x17 paper size using WIN$PRINTER?
  35. Where can I learn more about Classpath, the Java class loader, JDK tools and utilities?
  36. What are the key technical advantages of isCOBOL?
  37. Why do I get the error message "Native call not found" and how do I fix the problem?
  38. Why do I get the error java.lang.NoClassDefFoundError: com/iscobol/rts_n/StopRunException?
  39. Does isCOBOL run on Linux on System z?
  40. Can Veryant recommend a good Web site to find 3rd party JavaBeans?
  41. I still get the error : "Missing License: The license key is missing, invalid or has expired!" I can't figure out why
  42. What compile option should I use for ICOBOL compatibility?
  43. How do I compile fixed (ANSI) format source that COPYs terminal format source or vice versa?
  44. Can isCOBOL access a DLL or .so that is in a JAR file?
  45. Can I use directory paths in CALL names?
  46. How do I configure file locations with environment variables?
  47. What algorithm does isCOBOL use to load framework properties (runtime config variables)?
  48. Is your runtime library backward compatible?
  49. How can I make my isCOBOL program to be called instead of a C routine when both have the same name?
  50. How do I set iscobol.file.index.FileName with variable file name assignments?
  51. What is the easiest and/or best way to convert a legacy text-based user interface to a web front end?
  52. Does isCOBOL APS run on z/OS?
  53. How do I specify which file status codes I want to use?
  54. Is isCOBOL backward compatible?
  55. Is there any equivalent to COPY RESOURCE?
  56. Does isCOBOL support C$REDIRECT?
  57. Why do I get the error message “java.lang.UnsatisfiedLinkError: no ### in java.library.path?
  58. How do I write my own replacement for a C$ library routine?
  59. What is the best way to profile an isCOBOL program?
  60. What should I use for USAGE HANDLE items instead of NULL?
  61. How can I avoid the "java.lang.OutOfMemoryError: PermGen space" error?
  62. Can you derive isCOBOL object classes from Java and vice versa?
  63. Can the file system (iscobol.file.index) be set programmatically?
  64. How can I tell what changes were made in the isCOBOL latest update?
  65. Is there any way to use isCOBOL with SCO 5.0.6 (JDK 1.3)?
  66. I've heard there is a problem passing pointers to C functions. What is it?
  67. How can I monitor a jvm started on a remote computer box?
  68. How do I get more information when I get java.lang.reflect.InvocationTargetException?
  69. Does isCOBOL support Crystal Reports or other Report Writers?
  70. How do I suppress multiple reserved words with the -rw compiler option?
  71. Why do I get the error message "java.lang.ArrayIndexOutOfBoundsException" ?
  72. Why do I get the error message "java.lang.NullPointerException" ?
  73. Can I call an RMCobol program passing parameters to it?
  74. What does mean the error NO X11 DISPLAY?
  75. How can I encode a URL String?
  76. What can I use to perform an email validation during entry-field accept?
  77. Working with sequential files on Pipes
  78. How do I resolve the error "java.lang.NoClassDefFoundError" or "java.lang.ClassNotFoundException"?
  79. Does isCOBOL support C$XML or other XML interfaces?
  80. Is there any way to direct the output from the "Print Screen" keyboard key directly to a printer?
  81. Why do I get the error "Could not load the main class" ?
  82. Did you know isCOBOL IDE allows you to easily understand how to invoke a method in a Java Class?
  83. Did you know you could set a background image from isCOBOL IDE's painter?
  84. Did you know that in a string you can replace a text with a new one with a different length by using the C$REPLACE_ALL routine?
  85. Did you know how to write custom information inside isCOBOL log file?
  86. How to programmatically set the attributes for PDFs?
  87. How can I read data correctly from a line-sequential file that has a different encoding from the one used by isCOBOL?
  88. GIT Server (Linux) - Install and Configuration
  89. Did you know these two ways of finding out the working directory in use?
  90. Activating and Check the isCOBOL License
  91. How to search by key with case insensitive on ISAM files
  92. How can I read a data written with a different encoding?
  93. How do I point my installed isCOBOL to a different Java location?
  94. May I create my own type definitions and reuse them?
  95. How can I use the Call/Cancel custom HOOK program to get the start and end time of every CALLed program?
  96. How can I tell if my application is running in the WebClient environment or another environment?
  97. How can I generate QR codes from COBOL?
  98. Can I define one or more data items based on the definition of another one?
  99. How can you wait for several threads to finish?
Article Information Additional Information
Article Number: 282
Created: 2016-10-14 8:35 AM
Rating: No Rating
 
Article Options Article Options
Print Question Print this Question
Email Question Email Question to Friend
Export to Adobe PDF Export to PDF File
Export to MS Word Export to MS Word
Bookmark Article
Subscribe to Article Subscribe to Article
 
Search Knowledge Base Search Knowledge Base



 
 

© Veryant - All Rights Reserved
Veryant and isCOBOL are trademarks or registered marks of Veryant in the United States and other countries. All other marks are the property of their respective owners.