The native iSeries™ JSSE provider offers the full suite of JSSE classes and interfaces including implementations of the JSSE KeyStore class and the SSLConfiguration class.
To use the native iSeries provider effectively, use the information in this topic, and also see SSLConfiguration Javadoc information.
The following table identifies and describes the protocol values for the SSLContext.getInstance method of the native iSeries JSSE provider.
| Protocol value | Supported SSL protocols |
|---|---|
| SSL | SSL version 2, SSL version 3, and TLS version 1 |
| SSLv2 | SSL version 2 |
| SSLv3 | SSL version 3 |
| TLS | SSL version 2, SSL version 3, and TLS version 1 |
| TLSv1 | TLS version 1 |
| SSL_TLS | SSL version 2, SSL version 3, and TLS version 1 |
The native iSeries provider offers an implementation of the KeyStore class of type IbmISeriesKeyStore. This keystore implementation provides a wrapper around the Digital Certificate Manager support. The contents of the keystore are based on a particular application identifier or keyring file, password, and label. JSSE loads the keystore entries from the Digital Certificate Manager. To load the entries, JSSE uses the appropriate application identifier or keyring information when your application makes the first attempt to access keystore entries or keystore information. You cannot modify the keystore, and you must make all configuration changes by using the Digital Certificate Manager.
For more information about using the Digital Certificate Manager, see the following topic:
The following are recommendations to make the native iSeries provider run as efficient as possible.