-
Bug
-
Resolution: Fixed
-
P4
-
5.0
-
rc
-
generic
-
generic
Here is the list of "JCE Reference Guide" doc changes for JCE tiger-beta2 release:
1. Under the "What's New in JCE in the Java 2 SDK, v1.5", we should add the following item for rfe#5008156 and 5008159 which are added in tiger-beta2:
o Support for "DESedeWrap" and "AESWrap" Ciphers to SunJCE provider
(more details can be found in the bugtraq records; support for these
new cipher algorithms are mandated by W3C XML Encryption standard)
2. Starting tiger-beta2 B50, the java installation directory has a name change, i.e. from j2sdk1.5.0 to jdk1.5.0 and
j2re1.5.0 to jre1.5.0.
Thus, we should update the directory names mentioned in the doc under the following sections:
- section "Installing the Provider Classes"
- section "Configuring the Provider"
3. Under section "Setting Provider Permissions", the first item which mentions the java.lang.RuntimePermission should include "getProtectionDomain" permission target in its description just like what the second item does.
4. Add "AESWrap" and "DESedeWrap" to the list of cipher algorithms under section "Appendix A: Standard Names". It should be made clear that these two algorithms only support certain mode and padding. The valid mode and padding for these two
are listed as following:
AESWrap=> ECB+NoPadding
DESedeWrap=> CBC+NoPadding
5. Change the padding scheme name "OAEPWith<digest>And<mgf>Padding" to "OAEPWith<digest>And<mgf>Padding/OAEPPadding" under section "Appendix A: Standard Names". Note that in the case of "OAEPPadding", Cipher objects
can be initialized with javax.crypto.spec.OAEPParameterSpec to supply
parameter values needed for OAEPPadding.
6. Add the following SecretKeyFactory algorithm names to section "Appendix A: Standard Names":
PBEWithSHA1AndDESede (defined in PKCS #12)
PBEWithSHA1AndRC2_40 (defined in PKCS #12)
7. Added the following algorithms and their default key sizes to section "Appendix B: SunJCE Default Keysizes"
* KeyGenerator:
AES => 128 (in bits)
RC2 => 128
ARCFOUR/RC4 => 128
HmacSHA256 => 256
HmacSHA384 => 384
HmacSHA512 => 512
1. Under the "What's New in JCE in the Java 2 SDK, v1.5", we should add the following item for rfe#5008156 and 5008159 which are added in tiger-beta2:
o Support for "DESedeWrap" and "AESWrap" Ciphers to SunJCE provider
(more details can be found in the bugtraq records; support for these
new cipher algorithms are mandated by W3C XML Encryption standard)
2. Starting tiger-beta2 B50, the java installation directory has a name change, i.e. from j2sdk1.5.0 to jdk1.5.0 and
j2re1.5.0 to jre1.5.0.
Thus, we should update the directory names mentioned in the doc under the following sections:
- section "Installing the Provider Classes"
- section "Configuring the Provider"
3. Under section "Setting Provider Permissions", the first item which mentions the java.lang.RuntimePermission should include "getProtectionDomain" permission target in its description just like what the second item does.
4. Add "AESWrap" and "DESedeWrap" to the list of cipher algorithms under section "Appendix A: Standard Names". It should be made clear that these two algorithms only support certain mode and padding. The valid mode and padding for these two
are listed as following:
AESWrap=> ECB+NoPadding
DESedeWrap=> CBC+NoPadding
5. Change the padding scheme name "OAEPWith<digest>And<mgf>Padding" to "OAEPWith<digest>And<mgf>Padding/OAEPPadding" under section "Appendix A: Standard Names". Note that in the case of "OAEPPadding", Cipher objects
can be initialized with javax.crypto.spec.OAEPParameterSpec to supply
parameter values needed for OAEPPadding.
6. Add the following SecretKeyFactory algorithm names to section "Appendix A: Standard Names":
PBEWithSHA1AndDESede (defined in PKCS #12)
PBEWithSHA1AndRC2_40 (defined in PKCS #12)
7. Added the following algorithms and their default key sizes to section "Appendix B: SunJCE Default Keysizes"
* KeyGenerator:
AES => 128 (in bits)
RC2 => 128
ARCFOUR/RC4 => 128
HmacSHA256 => 256
HmacSHA384 => 384
HmacSHA512 => 512