Certain security/crypto classes, e.g. KeyPairGenerator, support the usage of provider-default values when objects are not explicitly initialized with a specified value. Existing javadoc mentioned about the provider default values will be used when objects are not explicitly initialized. However, there is potential compatibility and interoperability issue involved in relying on provider-specific default values. Existing javadoc should mention these so callers can decide if they should explicitly initialize or not.