Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-4524097

2048 bit keylength restriction for RSA keys should be removed

XMLWordPrintable

    • Icon: Enhancement Enhancement
    • Resolution: Duplicate
    • Icon: P4 P4
    • None
    • 1.4.0, 1.4.1, 5.0
    • security-libs
    • generic, sparc
    • generic, solaris_8

      The JSafe RSA implementation we are currently using in both the SunRsaSign and the SunJSSE provider enforces a maximum length of 2048 bit for RSA keys. Keys of longer length cannot be parsed and signatures generated with such keys cannot be verified.

      We should see if this restriction can be lifted in a future release. See bug 4522417 for a real world certificate that includes a much longer key (16384 bit).

            andreas Andreas Sterbenz
            andreas Andreas Sterbenz
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Created:
              Updated:
              Resolved:
              Imported:
              Indexed: