Thales' cellular IoT products business is now part of Telit Cinterion, find out more.

You are here

Community > Forum > Global Discussion > Authenticate with TLS 1.2 server

Authenticate with TLS 1.2 server | Telit Cinterion IoT Developer Community

Like
0
15
vutu0001@e.ntu.edu.sg's picture
vutu0001@e.ntu....

May 24, 2016 - 4:45am, 11945 views

Hello,

I am working on an EHS6 project that require access to AWS IoT that using TLS 1.2 mutual authentication. Inoder to authenticate with AWS server, we will need the root CA from Verisign VeriSign root CA certificate with using sha1rsa signing algorithm. However, when I try to use this root CA the SecureConnection throw an Exception that X509Certificate.getAlg() could not parse the algorithm ID. I would like to ask if EHS6 support sha1rsa as I know form specification (java userguide) EHS6 support rsa-sha or sha245/384, etc...?  Is there diffrent between SHA and SHA-1, this confuses me.

Thanks and looking for your help

Regards,

Thanh

 

15
Comment
Log in or register to post comments
11 - 15 of 15 Comments

Pages

zeddy76's picture
zeddy76
Jul 6 2016 - 11:29am

Hi,

I have the same issue connecting to AWS IoT using MQTT with an installed certificate fails with 

java.io.IOException: Algorithm Id parsing failed 

Are there any news regarding this issue?

I use:

Cinterion

EHS6

REVISION 03.001

A-REVISION 00.000.14

OK     

Regards

Andre

Bartłomiej Gemalto Moderator's picture
Bartłomiej Gema...
Jul 7 2016 - 10:28am

Hello,

There were some issues regarding certificates reported recently and some improvements are made but at the moment there is no new version released yet. 

In your case this exception might mean that some improper format of certificate was used to produce the bin file for the module. Please check if it also occurs if you try to connect to some other site over TLS with active certificate verification and this certificate loaded on the module.

Regards,

Bartłomiej

vutu0001@e.ntu.edu.sg's picture
vutu0001@e.ntu....
Aug 2 2016 - 10:01am

Hello BartlomieJ and Andre,

After contatcing Gemalto presentative, I was given a new firmware (A-Revision 00.000.44) and this new firmware works with AWS Https and clients verification. Now, I can publish and subcribe from AWS.

Thanks for your support!

Best regards,

Thanh

bsayiner's picture
bsayiner
Aug 3 2016 - 2:20pm

Hi Thanh. I'm using BGS5T for connect to AWS IoT server. But i encounter same issue that java.io.IOException: Algorithm Id parsing failed. Where did you find new firmware? Do you have any mail address for contact gemalto technical sales. Thanks.

Best regards,

Bora

Bartłomiej Gemalto Moderator's picture
Bartłomiej Gema...
Aug 3 2016 - 2:43pm

Please visit this site to find your local contact: http://www.gemalto.com/m2m/where-to-buy

11 - 15 of 15 Comments

Pages