JAVA Toolkit
| home | contact

Home > News > IAIK-JCE 5.4 released!

Left menu

News Menu

Latest News

Christmas Release


One day before Christmas we have released new versions of our SSL/TLS library iSaSiLk and our XML Security Toolkit IAIK-XSECT!

IAIK-JCE 5.60 and IAIK [CP]AdES 2.4 released!


IAIK-JCE 5.60 introduces a "subsidiary" provider as workaround for fixing a JDK JSSE MessageDigest Cloneable bug. IAIK [CP]AdES 2.4 fixes a bug in the AtsHashIndexv3 ASN.1 representation.


Our Clients

IAIK-JCE 5.4 released!


We have released a new version of our new IAIK-JCE crypto toolkit!

Version 5.4 fixes a synchronization issue in the SecureRandom API. With Java version 8u112 Oracle has removed the synchronized keyword from method SecureRandom.nextBytes(). This may cause exceptions or repeated numbers when accessing one and the same PRNG simultaneously from several Threads. We have fixed this problem for the IAIK SecureRandom engines by internally synchronizing nextBytes() calls.

The jar files are now double-signed with old (for supporting old DSA JCE Root CA) and new (for supporting new RSA JCE Root CA) IAIK-JCE provider certificates. The new certificate provides a stronger protection (SHA256withRSA) than the old one (SHA1withDSA). The new JCE Root CA is effective for Java versions 8u121, 7u131, 6u141 upwards. To support other (former) Java versions the jar files must be signed with the old provider certificate, too.

We recommend to upgrade to the new version!

See the IAIK-JCE product page for a detailed list of changes, fixes and new features and and visit our download center to get the new version.

Kind regards,
Your SIC/IAIK Java Security Team!

print    tip a friend
back to previous page back  |  top to the top of the page