print Print
Logo: Stiftung Secure Information and Communication Technologies SIC Stiftung Secure Information and Communication Technologies SIC

IAIK-JCE 5.4 released!


We have released a new version of our new IAIK-JCE crypto toolkit!

Version 5.4 fixes a synchronization issue in the SecureRandom API. With Java version 8u112 Oracle has removed the synchronized keyword from method SecureRandom.nextBytes(). This may cause exceptions or repeated numbers when accessing one and the same PRNG simultaneously from several Threads. We have fixed this problem for the IAIK SecureRandom engines by internally synchronizing nextBytes() calls.

The jar files are now double-signed with old (for supporting old DSA JCE Root CA) and new (for supporting new RSA JCE Root CA) IAIK-JCE provider certificates. The new certificate provides a stronger protection (SHA256withRSA) than the old one (SHA1withDSA). The new JCE Root CA is effective for Java versions 8u121, 7u131, 6u141 upwards. To support other (former) Java versions the jar files must be signed with the old provider certificate, too.

We recommend to upgrade to the new version!

See the IAIK-JCE product page for a detailed list of changes, fixes and new features and and visit our download center to get the new version.

Kind regards,
Your SIC/IAIK Java Security Team!

print Print