JAVA Toolkit
| home | contact



News Menu

Latest News

IAIK-JCE 5.52 and iSaSiLk 5.2 released!

27/08/2018

The new versions of IAIK-JCE and iSaSiLk follow up the recently released new version of IAIK-ECCelerateTM (5.0). IAIK-JCE 5.52 brings some fixes and additions, and iSaSiLk 5.2 adds support for x25519 and x448 ECDHE key exchange and EdDSA signing using Curve25519 and Curve448. Furthermore iSaSiLk now supports RSA-PSS signatures.

ECCelerate 5.0 released!

12/07/2018

We proudly present a new maintenance release of our IAIK ECCelerate™ elliptic curve library! Version 5.0 adds support EdDSA using Curve25519 and Curve448, ECDH using X25519 and X448, and RFC6979. IAIK ECCelerate™ is based on Java 6 technology and has been thoroughly optimized for speed. Currently, it supports ECDSA, EdDSA, ECDH, X25519/448, ECIES and optionally ECMQV.

References

Our Clients


isasilk features

Main Features

  • Implemented entirely in the Java™ language guaranteeing cross platform portability
  • Works on JDK versions 1.2, 1.3, 1.4, 1.5, 1.6, 1.7, 1.8, 1.9. 1.10 and compatible  
    (JDK 1.5, 1.6, 1.7, 1.8, 1.9, 1.10. 1.11 are also called JDK 5, 6, 7, 8, 9, 10 respectively)
  •  Mature product with a proven over fifteen year track record in the real world applications
  • Centralized security policy configuration
  • Uses Socket API to allow easy upgrading of existing network
  • Support for the HTTPS protocol via the standard JDK URL framework
  • Secures Java™ RMI calls
  • Supports client side SOCKS and HTTPS proxies
  • Multithreading safe
  •  Special versions for Applets and Java™ WebStart

Protocol Standards Compliance

  •  Client and server implementation of SSL 3.0, TLS 1.0, TLS 1.1 and TLS 1.2; client
     implementation of SSL 2.0
  •  Ensures the most secure configured protocol version and encryption methods shared
     by client and server are used
  •  Supports all standard defined cryptographic algorithms including ECC, RSA,
     DSA, Diffie-Hellman, AES, Triple DES, DES, IDEA, RC2, RC4, MD5, and SHA
  • Supports AES Galois Counter Mode (GCM) Cipher Suites for TLS according to RFC 5288
  • Supports Elliptic Curve cipher suites according to RFC 4492 (Named Curves)
  • Supports all TLS defined NIST (RFC 4492) and Brainpool (RFC 7027) curves
  • Supports x25519 and x448 ECDHE key exchange, and Ed25519 and Ed448 EdDSA signatures (RFC 8422; experimental)
  • Supports RSA-PSS signature algorithms (rsa_pss_rsae_sha256, rsa_pss_rsae_sha384, rsa_pss_rsae_sha512, rsa_pss_pss_sha256, rsa_pss_pss_sha384, rsa_pss_pss_sha512)
  • Supports ECC Cipher Suites with SHA-256/384 and AES Galois Counter Mode (GCM) according to RFC 5289
  • Supports Camellia cipher suites according to RFC 4132
  • Supports Camellia Cipher Suites with SHA-256/384 and AES Galois Counter Mode (GCM), including PSK suites, according to RFC 5932/6367
  •  Public key server authentication, optional client authentication
     (ECC, RSA, DSA, and Diffie-Hellman) or fully anonymous connections
  • Supports all standard TLS extensions defined by RFC 4366
  •  Supports Session Resumption without Server-Side State
     (SessionTicket extension according to RFC 4507, RFC 5077)
  • Supports the extended_master_secret extension as specified in RFC 7627 to calculate the master secret in a way that cryptographically binds it to important session parameters
  •  Supports all Pre-Shared key (PSK) cipher suites defined by RFC 4279, RFC 4785
  • Supports Pre-Shared Key Cipher Suites with SHA-256/384 and AES Galois Counter Mode according to RFC 5487
  • Supports Pre-Shared Key ECDHE_PSK Cipher Suites according to RFC 5489
  • Session caching for high performance connection establishment
  • Security parameter renegotiation on demand

Application Extensible Design

  •  Can perform SSL/TLS over any pair of streams and over
     an existing socket
  • Pluggable custom certification path verification
  • Pluggable custom session management
  • Allows private application defined encryption methods
  • Allows private application defined compression functions

Proven Interoperability

  • Interoperates with any SSL 2.0, SSL 3.0, TLS 1.0, TLS 1.1 and TLS 1.2 implementation
  •  Compatible with Verisign GlobalID, Netscape Step-up certificates,
     Microsoft Server Gated Cryptography
  •  Interoperability tested among others with clients Netscape,
     Mozilla, Firefox, SeaMonkey, Microsoft Internet Explorer, Opera, Google Chrome.
  •  Interoperability tested with servers from Netscape, Microsoft, Oracle,
     IBM, Apache (SSLeay, OpenSSL) and others.

Cryptographic Provider Independence

  • Can be used with any JCA/JCE compliant cryptography provider
  • Can use several different cryptography providers at the same time
  •  Provisions for the integration of Smartcards and other secure
     hardware devices
  • Comes with the IAIK JCE provider by default (included in license)
 

 
print    tip a friend
back to previous page back  |  top to the top of the page