IAIK-JCE 2.0 Beta 1: 10. December 1997
|
|
Class or Package
|
B
ug /
C
hange
N
ew
F
eature
|
Description and Examples
|
|
RSAKeyPairGenerator
|
C
|
New RSA key generation according to RSA CryptoBytes Volume 3, Number 1 - Spring 1997.
|
|
CryptoUtils
|
NF
|
New method: BigInteger getStrongPrime(int x, Random random). Returns a strong random prime. This implementation uses the algorithm specified in RSA CryptoBytes Volume 3, Number 1 - Spring 1997.
|
|
DHKeyPair Generator
|
NF
|
Diffie-Hellman key and key parameter generation.
|
|
DSAKeyPair Generator
|
NF
|
DSA key and key parameter generation.
|
|
DSA
|
NF
|
DSA Signatures.
|
|
RawDSA
|
NF
|
Raw DSA Signatures without hashing.
|
|
MD5
|
NF
|
Implementation of MD5.
|
|
SHA
|
NF
|
Implementation of SHA-1
|
|
GeneralString
|
NF
|
New native ASN.1 type GeneralString (tag 27)
|
|
PKCS7SignedData
|
NF
|
All methods for managing PKCS#7 SignedData objects will be available.
|
|
BOOLEAN
|
B
|
Constructor BOOLEAN(boolean) ignored the boolean value.
|
|
RSAPrivateKey
|
B
|
Coefficient calculation was not according to PKCS#1.
|
IAIK-JCE 1.4 Final Release: 20. November 1997
|
|
Class or Package
|
B
ug /
C
hange
N
ew
F
eature
|
Description and Examples
|
|
Name
|
B
|
E-mail Address is now encoded as IA5String according to PKCS#9 (was PrintableString)
|
|
CertificatePolicies
|
B
|
This X.509v3 extension now also handles policy qualifiers
|
|
SSLRSASignature
|
NF
|
RSA Signature as defined in SSL v3.0 protocol (uses MD5 and SHA hash)
|
|
NumericString
|
NF
|
New ASN.1 primitive type: NumericString
|
|
VisibleString
|
NF
|
New ASN.1 primitive type: VisibleString
|
|
PolicyInformation
|
NF
|
New ASN.1 structure: PolicyInformation (used by CertificatePolicies)
|
|
PolicyQualifierInfo
|
NF
|
New ASN.1 structure: PolicyQualifierInfo (used by PolicyInformation)
|
IAIK-JCE 1.3 Release Candidate: 20. October 1997
|
|
Class or Package
|
B
ug /
C
hange
N
ew
F
eature
|
Description and Examples
|
|
All Packages
|
C
|
To be more flexible for future enhancements the package structure has been reorganized.
List of changes:
- iaik.security.pkcs -> iaik.pkcs
- iaik.security.x509 -> iaik.x509
- iaik.security.interfaces -> iaik.interfaces
- iaik.security.provider -> iaik.security.cipher
- iaik.security.provider -> iaik.security.rsa
|
|
PKCS12
|
NF
|
First application for PKCS#12. The class can now be used to parse PKCS#12 objects exported by Microsoft Internet Exoplorer. The files contain the certificate chain and the private key of the user.
|
Example:
PKCS12 pkcs12 = new PKCS12("file.export"); System.out.println(pkcs12); // the password used when exporting pkcs12.decrypt("password"); System.out.println(pkcs12); RSAPrivateKey pk = pkcs12.getPrivateKey(); X509Certificate[] certList = pkcs12.getCertificateList();
|
|
PKCS7
|
NF
|
First application for PKCS#7. The class can now be used to parse and create certificate chains as used by Netscape Navigator and Microsoft Internet Explorer (extension .p7c).
|
Example:
X509Certificate[] certs = ...; PKCS7 pkcs7 = new PKCS7(); pkcs7.createCertificateList(certs); pkcs7.setFormat(ASN1.DER); pkcs7.saveToFile(pkcs7File); or: PKCS7 pkcs7 = new PKCS7("certs.p7c"); X509Certificate[] certs = pkcs7.getCertificateList();
|
|
iaik.asn1
|
C
|
Complete reorganisation of this package. ASN.create is no longer needed:
More examples can be found in: demo/iaik-jce/TestASN1.java
|
Example:
SEQUENCE seq = new SEQUENCE(); seq.addComponent(new INTEGER(1234));
|
|
all packages
|
C
|
Harmonisation of the API
|
Example:
obj.setFormat (ASN1.DER); obj.toByteArray(); // DER encoded obj.saveToFile(); // DER encoded
|
|
Base64 OutputStream
|
B
|
Base64 encoding was wrong when length of array to encode > 1024
|
|
SET
|
B
|
SET with indefinite length = 0 caused an CodingException
|
|
SEQUENCE
|
B
|
SEQUENCE with indefinite length = 0 caused an CodingException
|
|
RSAPrivateKey
|
NF
|
New constructor which only needs modulus, public exponent and private exponent.
|
|
|
NF
|
New method: getPublicExponent();
|
IAIK-JCE 1.2beta: 24. September 1997
|
|
Class or Package
|
B
ug /
C
hange
N
ew
F
eature
|
Description and Examples
|
|
CFBMode
|
NF
|
n-Bit CFB (n must be a multiple of 8)
|
Example:
Cipher c = Cipher.getInstance ("DES.CFB8");...byte[] in = {44};byte[] out = c.crypt(in);
|
|
OFBMode
|
NF
|
n-Bit OFB (n must be a multiple of 8)
|
Example:
Cipher c = Cipher.getInstance ("DES.OFB8");...byte[] in = {44};byte[] out = c.crypt(in);
|
|
CRL
|
B
|
Revoked certificates were not OPTIONAL in CRLs.
|
|
CipherOutput Stream
|
B
|
Method flush() now also flushes the underlying output stream.
|
|
Cipher
|
C
|
Method setCipherMode(..) doesn't throw an InvalidParameterException anymore.
|
|
|
C
|
Method setInitializationVector(..) now throws a InvalidAlgorithmParameterException if the IV has a wrong length.
|
|
|
NF
|
Now it is possible to use a n-Bit CFB and a n-Bit OFB. You get this new feature over Cipher.getInstance("DES.CFB8"); allowed values: CFB = CFB64, CFB8, CFB16, ..., CFB[blocklength*8]
|
IAIK-JCE 1.1beta: 08. September 1997
|
|
Class or Package
|
B
ug /
C
hange
N
ew
F
eature
|
Description and Examples
|
|
Cipher
|
B
|
Padding length calculation was wrong.
|
|
Idea
|
B
|
Internal key generation bug.
|
|
MD5RSASignature
|
C
|
DigestAlgorithmID is now AlgorithmID.md5 instead of AlgorithmID.md5 With RSAEncryption.
|
|
ShaRSASignature
|
C
|
DigestAlgorithmID is now AlgorithmID.sha instead of AlgorithmID.sha With RSAEncryption.
|
|
RSAPrivateKey
|
B
|
Ensure that
prime1 < prime2 for imported keys (SSLeay)
otherwise fast en/decryption will not work.
|
|
ChoiceOfTime
|
B
|
Year for UTCTime was wrong.
|
|
RSAKey
|
B
|
If first bit in a signature was get, a negative BigInteger was created.
|
