Hi everybody,
I want to ask some question about BouncyCastle provider jar versions used in
Rampart.
I can see that in Rampart 1.4 RC1 dist two versions are provided
bcprov-jdk13-*.jar and bcprov-jdk15-*.jar. I suppose that this is because we
can read from http://www.bouncycastle.org/documentation.html in *important
notes* section that:
2. The JCE classes are only distributed with the JDK 1.1, JDK 1.2,
and JDK 1.3 JCE releases. The JDK 1.4-1.6 release just contains the provider
and lightweight API. The JDK 1.0, J2ME, and the JDK 1.1 and later
lightweight releases only include the Bouncy Castle lightweight cryptography
API.
3. If you are using JDK 1.4, or later, you must use the signed jar
for the provider and you must download the unrestricted policy files for the
Sun JCE if you want the provider to work properly. The policy files can be
found at the same place as the JDK download. Further information on this can
be found in the Sun documentation on the JCE. If you have not installed the
policy files you will see something like:
java.lang.SecurityException: Unsupported keysize or algorithm parameters
at javax.crypto.Cipher.init(DashoA6275)
My questions are:
1) Why bcprov-jdk15-*.jar is added but not bcprov-jdk14-*.jar ? Is it
because of any major upgrades?
Another question is what about users of Rampart that are using jdk1.4?
AFAIK it is not possible to use bcprov-jdk15-*.jar with jdk 1.4 (or said
another way: is bcprov-jdk15 really 1.5 specific or would it run under 1.4
as well?)?
2) Can I replace bcprov-jdk15 with bcprov-jdk14 and still expect everything
to be ok?
Regards,Dobri
