Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8265008

Add ChaCha20 and Poly1305 support to SunPKCS11 provider

XMLWordPrintable

    • Icon: CSR CSR
    • Resolution: Approved
    • Icon: P3 P3
    • 17
    • security-libs
    • None
    • behavioral
    • minimal
    • Other
    • SE

      Summary

      Update "PKCS#11 Reference Guide" with the support for ChaCha20-Poly1305 cipher and ChaCha20 key. Add ChaCha20 as standard SecretKeyFactory name in "Java Security Standard Algorithm Names" doc.

      Problem

      SunPKCS#11 provider is enhanced to support ChaCha20-Poly1305 cipher and ChaCha20 key. The "PKCS#11 Reference Guide" and "Java Security Standard Algorithm Names" docs should be updated accordingly.

      Solution

      Update table 5-3 "Java Algorithms Supported by the SunPKCS11 Provider" of PKCS#11 Reference Guide and "SecretKeyFactory Algorithms" section of Java Security Standard Algorithm Names.

      Specification

      1) Add the following rows to the Table 5-3 "Java Algorithms Supported by the SunPKCS11 Provider" of PKCS#11 Reference Guide. (Please see https://docs.oracle.com/en/java/javase/16/security/pkcs11-reference-guide1.html#GUID-D3EF9023-7DDC-435D-9186-D2FD05674777 for the relevant guide for jdk 16)

      Java Algorithm PKCS#11 Mechanisms
      Cipher.ChaCha20-Poly1305CKM_CHACHA20_POLY1305
      KeyGenerator.ChaCha20CKM_CHACHA20_KEY_GEN
      SecretKeyFactory.ChaCha20 CKM_CHACHA20_POLY1305

      2) Add the following row to "SecretKeyFactory Algorithms" section of Java Security Standard Algorithm Names.

      Algorithm Name Description
      ChaCha20Constructs secret keys for use with the ChaCha20 and ChaCha20-Poly1305 algorithms.

            valeriep Valerie Peng
            valeriep Valerie Peng
            Sean Mullan
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated:
              Resolved: