Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-6753664

Support SHA256 (and higher) in SunMSCAPI

    XMLWordPrintable

    Details

    • Subcomponent:
    • Resolved In Build:
      b05
    • CPU:
      x86
    • OS:
      windows_xp, windows_vista
    • Verification:
      Verified

      Backports

        Description

        A DESCRIPTION OF THE REQUEST :
        In the SunMSCAPI-Provider only these signature algorithms are implemented now:
        SHA1withRSA
        MD5withRSA
        MD2withRSA

          To create secure digital signatures we need at least:
        SHA256withRSA.

        New alogithms should be implemented easily, because MSCAPI already supports them. But they are not registered in the provider an cannot be added at runtime.

        JUSTIFICATION :
        Currently (2008), the existing algorithms are not sufficient anymore.
        German law enforces higher security for all new digital signatures. I expect similar laws in other countries.

        Enlish Info: http://www.bundesnetzagentur.de (English) -> Areas -> Electronic Signature -> Publications and Notifications -> Suitable Algorithms

        German Info: http://www.bundesnetzagentur.de -> Sachgebiete -> Qualifizierte Elektronische Signatur ->Veröffentlichungen -> Geeignete Algorithmen


        CUSTOMER SUBMITTED WORKAROUND :
        The only workaround would be to recompile sunmscapi.jar from the sources.
        (As suggested in RFE 6578658)

          Attachments

            Issue Links

              Activity

                People

                Assignee:
                vinnie Vincent Ryan
                Reporter:
                ndcosta Nelson Dcosta (Inactive)
                Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                  Dates

                  Created:
                  Updated:
                  Resolved:
                  Imported:
                  Indexed: