Newsletter sign-up
View all newsletters

Enterprise Java Newsletter
Stay up to date on the latest tutorials and Java community news posted on JavaWorld

Sponsored Links

Optimize with a SATA RAID Storage Solution
Range of capacities as low as $1250 per TB. Ideal if you currently rely on servers/disks/JBODs

Java security evolution and concepts, Part 4

Learn how optional packages extend and enhance Java security

  • Print
  • Feedback

Page 4 of 6

Figure 3. Java Cryptography Extension. (Source: Sun Microsystems)



The reference implementation, SunJCE provider, supports the following ciphers and MACs:

  • DES
  • DESede
  • Blowfish
  • PBEWithMD5AndDES
  • PBEWithMD5AndTripleDES
  • Diffie-Hellman key agreement among multiple parties
  • HMACMD5
  • HMACSHA1


With JCE 1.2.1, the framework is exportable outside the US and Canada, enabled by mechanisms JCE implements to ensure that only qualified providers can be plugged in. The cryptographic strength can be controlled in the jurisdiction policy files. Several clean-room JCE 1.2 implementations exist as well (see Resources).

JCE classes

JCE's classes and interfaces exist in the following packages:

  • javax.crypto
  • javax.crypto.interfaces
  • javax.crypto.spec


The classes and interfaces in javax.crypto.spec provide key and parameter specifications for the different algorithms like DES, Diffie-Hellman, and so on.

  • Print
  • Feedback

Resources
  • "Construct Secure Networked Applications with Certificates," Todd Sundsted (JavaWorld):
  • Java Security Resources from java.sun.com
  • Other Important Java Security Resources