The JDK PKCS12 [KeyStore] implementation now supports the more modern PBMAC1 algorithm for integrity protection. To use the PBMAC1 algorithm, set the "keystore.pkcs12.macAlgorithm" property in the `java.security` configuration file to a PBMAC1 algorithm (ex: "PBEWithHmacSHA256"). Existing PKCS12 keystore files will continue to use the integrity algorithm it was created with, but new keystore files will use the PBMAC1 algorithm.

In a future JDK release the default value of the "keystore.pkcs12.macAlgorithm" security property will be changed to a PBMAC1 algorithm.