exception when using thawte certificate

Apr 16, 2008 at 8:40 AM
Hi,

im currently using version 1.0.1 because it was easier to setup (libs included and so on, why is that so ugly in 1.0.5?).

When running on tomcat 5.5 with ssl enabled, I get the following error on decrypting the saml token:

de.fraunhofer.fokus.jic.rp.SAMLTokenDecrypter.decryptIt -
org.apache.xml.security.encryption.XMLEncryptionException: Illegal key size
Original Exception was java.security.InvalidKeyException: Illegal key size
at org.apache.xml.security.encryption.XMLCipher.decryptToByteArray(Unknown Source)
at org.apache.xml.security.encryption.XMLCipher.decryptElement(Unknown Source)
at org.apache.xml.security.encryption.XMLCipher.doFinal(Unknown Source)
at de.fraunhofer.fokus.jic.rp.SAMLTokenDecrypter.decryptIt(SAMLTokenDecrypter.java:233)

I'm currently using a thawte certificate in my keystore, here is the verbose list output:
Keystore type: jks
Keystore provider: SUN

Your keystore contains 1 entry

Alias name: openid
Creation date: Apr 15, 2008
Entry type: keyEntry
Certificate chain length: 1
Certificate1:
Owner: CN=openidbycard.com, OU=WebServices, O=fun communications GmbH, L=Karlsruhe, ST=Baden-Wuerttemberg, C=DE
Issuer: EMAILADDRESS=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Ca
pe Town, ST=Western Cape, C=ZA
Serial number: 45f73a8a50189c310a52399f1cf74b81
Valid from: Thu Apr 10 02:00:00 CEST 2008 until: Sun Apr 11 01:59:59 CEST 2010
Certificate fingerprints:
MD5: BB:1B:A4:39:FE:50:58:7D:53:26:B3:A1:14:71:C8:5D
SHA1: 8B:AF:6B:43:F5:27:88:EC:0A:61:5A:C8:24:BF:BA:AD:54:6E:4E:C7


the public key has a length of 1536 bits. Could this cause the problem?

Any ideas how to fix that?
Thorsten
Apr 16, 2008 at 12:18 PM
problem solved, after installing jcepolicy-15_0.

Thanks!

P.S. Project Homepage is currently down!