jce

Where to find Java 6 JSSE/JCE Source Code?

Where can I download the JSSE and JCE source code for the latest release of Java? The source build available at https://jdk6.dev.java.net/ does not include the javax.crypto (JCE) packages nor the com.sun.net.ssl.internal (JSSE) packages. Not being able to debug these classes makes solving SSL issues incredibly difficult. Thanks. ...

Java/JCE: Decrypting "long" message encrypted with RSA

I've got a message contained in an byte[], encrypted with "RSA/ECB/PKCS1Padding". To decrypt it I create a Cipher c and initiate it with c = Cipher.getInstance("RSA/ECB/PKCS1Padding"); Untill now I have only decrypted small messages, using the doFinal() method, returning an byte[] with the decrypted bytes. c.init(Cipher.DECRYPT_MODE...

Is JCE needed if you have LDAP?

Do you need to have JCE embedded in your java application when you already have LDAP authentication in place. ...

Truststore and Keystore Definitions

In Java, what's the difference between a keystore and a truststore? ...

Dazed and confused by Java Security & BouncyCastle APIs

I've been trying to make sense of the BouncyCastle cryptography APIs for Java. Unfortunately, I'm finding Java cryptography in general to be so obscured by service provider interfaces and jargon that I can't wrap my head around what anything actually does. I've tried reading the necessary documentation repeatedly but it just stays incomp...

Are there any other open source JCE libraries besides BouncyCastle?

I am looking for open source JCE libraries that implement some of the more esoteric encryption algorithms so that I can study their implementation. I would be especially interested in ones that implement Identity Based Encryption (IBE) as published by Stanford. ...

Identity-Based Encryption and Open Source

I recently ran across the notion of Identity Based Encryption (IBE) which seems like a novel idea. However, I haven't noticed many in the cryptography community attempting to find ways to break it. Am I wrong? Likewise, I am of the belief that unless you can actually distribute open source implementations where the blackhat crowd can at...

JCE problem in Lotus Expeditor (IBM's custom Eclipse runtime)

I'm trying to authenticate to Google Apps using the GData client library. I've imported the needed jars and dependencies from the library into my Eclipse environment and verified that test code that calls the service works when run (a) as a POJO and (b) as a standard Eclipse plugin. When running in the Expeditor runtime (j9vm - Lotus Sym...

Using Sun JCE provider on top of IBM SDK

Hi, I need to use Sun JCE provider in an application that is running on IBM Websphere. This can be achieved by specifying the security_provider.1=com.sun.crypto.provider.SunJCE. Some parts of my application make use of SSL facilities of IBM. I want to know whether configuring the SunJCE provider affects the JSSE provider usage in other...

"Unlimited Strength" JCE Policy Files

I have an app that uses 256-bit AES encryption which is not supported by Java out of the box. I know to get this to function correctly I install the JCE unlimited strength jars in the security folder. This is fine for me being the developer, I can install them. My question is since this app will be distributed, end users most likely wil...

Get REAL X.509 data from RFC1421 formatted certificate.

We have a Java application that stores RSA public keys and allows a user to encrypt a short stream of information with any of the keys. The application also allows the user to import a new key certificate into the keystore. When we load the certificate from a file, we want to use the common name (CN) as the alias. Here is the problem: C...

Can't get JCE working on front-end

I've gone through all the tutorials and read through a ton of forum posts, but to no avail. I cannot get JCE to work properly on the front-end of my Joomla project. I have the group settings to allow Editors (and higher levels) to use JCE. When I log in as an editor on the front-end though, I only have text boxes to edit the content, no ...

Creating an X509 Certificate in Java without BouncyCastle?

Is it possible to sanely create an X509 Certificate in Java code without using the Bouncy Castle X509V*CertificateGenerator classes? ...

Signing message with certificate: JCE, IAIK or similar in IBM SDK 5.0

So, I'm in a very difficult problem. Using Java: I've an enterprise certificate (in .p12 format) altogether with its public key ("password" string). Also I've a text message which I've to sign in PKCS7 format. I've been reading a lot and I've realized that there's no STANDARD implementation to do what I want to do. There is the JCE/JCA...

TinyMCE/JCE on a split-site Joomla

Dear All I have split a Joomla installation across two servers (one for dynamic content, one for static) and I'm having trouble with the wysiwyg editor TinyMCE/JCE. Can anyone offer any guidance? Some details: I am working on a social-networking site based on Joomla. I have split the content over two servers, and edited configuratio...

How to sign a custom JCE security provider

Sun's PKCS11 JCE security provider is lacking some functionality we need. So I wrote an enhanced version of it using the original sources. Unfortunately the JCE infrastructure rejects the new provider "JCE cannot authenticate the provider" because it is not properly signed. javax.crypto.JceSecurity.verifyProviderJar(...) throws. (it ca...

Is JCE part of Java SE 6?

I am trying to use some open source java library and that library has JCE as one of its dependencies. If I am using Java 1.6, do I need to download a JCE library separately or is it part of it? Seems like bountycastle.org (the open source provider for JCE) does not have any JCE listed for 1.4+ ...

What's the Java JCE equivalent for this C OpenSSL encryption function?

I am writing a Java implementation of an app originally written in C. I can't modify the C version, and the Java version must share encrypted data with the C version. Here's the relevant part of the C encryption code: makekeys(password,&key1,&key2); /* turns password into two 8 byte arrays */ fill_iv(iv); /* bytes 8 bytes of randomness...

S/MIME in Java without JCE

I'm trying to write an applet that would sign e-mail with S/MIME. Obviously I want to make one small jar with only the required stuff. Obviously the Java way of doing that involves having a huge sacred signed Bouncy Castle JCE jar around. The question is: What's the easiest way of getting S/MIME without touching JCE and having it compl...

Java JCE providers - what does "clean room implementation" mean?

I'm required to write a JCE provider. I have learned that I need to use the bouncy castle clean room implementation. Could you please tell me what "clean room implementation" means in in this context? ...