Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8293858

Change PKCS7 code to use default SecureRandom impl instead of SHA1PRNG

XMLWordPrintable

        sun.security.pkcs.PKCS7 uses a SHA1PRNG SecureRandom to generate a nonce for timestamped signatures. SHA1PRNG should be phased out. This should be changed to use the default SecureRandom PRNG which varies depending on the OS. Also, it should call sun.security.jca.JCAUtil.getDefSecureRandom() which reuses a SecureRandom instance for improved performance.

              mullan Sean Mullan
              mullan Sean Mullan
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: