Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-6753664

Support SHA256 (and higher) in SunMSCAPI

    Details

    • Subcomponent:
    • Resolved In Build:
      b05
    • CPU:
      x86
    • OS:
      windows_xp, windows_vista
    • Verification:
      Verified

      Backports

        Description

        A DESCRIPTION OF THE REQUEST :
        In the SunMSCAPI-Provider only these signature algorithms are implemented now:
        SHA1withRSA
        MD5withRSA
        MD2withRSA

          To create secure digital signatures we need at least:
        SHA256withRSA.

        New alogithms should be implemented easily, because MSCAPI already supports them. But they are not registered in the provider an cannot be added at runtime.

        JUSTIFICATION :
        Currently (2008), the existing algorithms are not sufficient anymore.
        German law enforces higher security for all new digital signatures. I expect similar laws in other countries.

        Enlish Info: http://www.bundesnetzagentur.de (English) -> Areas -> Electronic Signature -> Publications and Notifications -> Suitable Algorithms

        German Info: http://www.bundesnetzagentur.de -> Sachgebiete -> Qualifizierte Elektronische Signatur ->Veröffentlichungen -> Geeignete Algorithmen


        CUSTOMER SUBMITTED WORKAROUND :
        The only workaround would be to recompile sunmscapi.jar from the sources.
        (As suggested in RFE 6578658)

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  vinnie Vincent Ryan
                  Reporter:
                  ndcosta Nelson Dcosta
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  1 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved:
                    Imported:
                    Indexed: