Java and security bits

« Slides for Secure... | Main | Mustang Security... »
Friday May 26, 2006

ECC Updates and RFC 4492

Mustang build 85 was just posted to java.net. It includes the fix for 6414980, which are the ECC changes I alluded to last time. Specifically it:

  • adds support for the Signature algorithms SHA256withECDSA, SHA384withECDSA, and SHA512withECDSA

  • changes the default keysize/curve to NIST P-256 for interoperability and NSA Suite B compliance

  • fixes a bug in the encoding of the Supported Elliptic Curves Extension in SunJSSE

  • updates to the PKCS11 KeyStore to fully support EC keys plus some other KeyStore changes to better interoperate with NSS and other tokens

While on the topic of ECC, I also need to point out that Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer Security (TLS) has now been issued as RFC 4492 as announced in this message. Congratulations to all the authors, in particular fellow Sun employees Vipul Gupta and Nelson Bolyard.

Posted at 00:50 May 26, 2006 by Andreas Sterbenz in Java  | 

Comments:

Post a Comment:
Comments are closed for this entry.

Calendar

« June 2009
SunMonTueWedThuFriSat
 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
    
       
Today

Feeds

Links

Recent Posts

Referers

Today's Page Hits: 412