jce

问题 Have a String being sent from in the below format: -----BEGIN RSA PUBLIC KEY----- MIGHAoGBANAahj75ZIz9nXqW2H83nGcUao4wNyYZ9Z1kiNTUYQl7ob/RBmDzs5rY mUahXAg0qyS7+a55eU/csShf5ATGzAXv+DDPcz8HrSTcHMEFpuyYooX6PrIZ07Ma XtsJ2J4mhlySI5uOZVRDoaFY53MPQx5gud2quDz759IN/0gnDEEVAgED -----END RSA PUBLIC KEY----- How do i construct a PublicKey Object from this string ? Have tried the below Remove the header and footer and base64 decode the buffer public static PublicKey getFromString(String keystr) throws

问题 I read a previous post regarding the error 'Could not generate DH keypair' fired when the server sents a key longer than 1024 bits. Downloading the JCE unlimited jars should fix this issue. In the test environment I have I encountered the following, for the same web server if I use Java 6 I don't get any errors when performing the https query but if I use Java 7 then I get 'Could not generate DH keypair'. I tried replacing the jar files for JCE unlimited but still get the same error. The bug

问题 I need to install the Java Cryptography Extension for Java 8 in OS X / mac OS . It turns out the steps from the README file which came with the installer include instructions only for Unix and Windows , but not for OS X / mac OS . I tried to put the JAR files in $JAVA_HOME/lib/security , but it didn't work either. Do you know how can I install them? 回答1: Java 8 Update 161 As pointed out in another answer and in Oracle's release notes for Java 8 Update 161, unlimited cryptography is enabled by

问题 Setup Java doesn't offer out-of-the-box support for the JCE Unlimited Strength Policy Files This prevents users from using AES-256, the largest key size of a widely-used encryption standard Not including the policy files leads to many problems: Unexpected exceptions Unsatisfying workarounds: Just install them Use a different implementation Use reflection that may violate the Java License Agreement Breakage after JRE updates Confusion after installation And more! All this noise leads to broken

问题 Everyone talks about the padding schemes in ciphers but what are the actual strings one needs to pass in to the cipher? I don't care if they are symmetric or asymmetric, I just want a list of the possible values. 回答1: There are many types of padding, PKCS-7, Zero, ISO 10126, ANSI X.923, etc. I suggest you read up on padding since you seem not to fully understand the concept. Then there's the possibility you are referring to cryptographic salt. Edit Every implementation of the Java platform is

问题 By looking around here as well as the internet in general, I have found Bouncy Castle. I want to use Bouncy Castle (or some other freely available utility) to generate a SHA-256 Hash of a String in Java. Looking at their documentation I can't seem to find any good examples of what I want to do. Can anybody here help me out? 回答1: To hash a string, use the built-in MessageDigest class: import java.security.MessageDigest; import java.security.NoSuchAlgorithmException; import java.nio.charset

问题 Is it possible decrypt an encrypted RSA (or others, shouldn't matter) private keys using JCE and/or BouncyCastle provider (not using openssl bundle)? I can read unencrypted keys just fine using PrivateKeyFactory. Googling this gets me through examples of using PEMReader (from BC openssl bundle) that has a password applied to it, but - don't want to use openssl bundle, don't necessarily want to use PEM format, and I can decode PEM using PemReader (from provider bundle). It's what can I do with

问题 I am using the following code to pattern match an instance of PrivateKey : import java.security.interfaces.{RSAPrivateKey, RSAPublicKey} import java.security.{PrivateKey, PublicKey} object ClientPrivateKey { def apply(privateKey: PrivateKey) = privateKey match { case k: RSAPrivateKey ⇒ RSAClientPrivateKey(k) case k: EdDSAPrivateKey ⇒ EDCClientPrivateKey(k) } } val pk: PrivateKey = .... ClientPrivateKey(pk) I am getting a weird behavior when running tests with sbt ~test . On the first run the

问题 I'm reading openssh format elliptic curve public keys (RFC 5656, section 3.1) and would like to get from a BigInteger Q value to an ECPublicKey instance using JCE (rather than say BouncyCastle). I want to do this to verify JWT signatures. e.g. https://api.github.com/users/davidcarboni/keys: ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBK8hPtB72/sfYgNw1WTska2DNOJFx+QhUxuV6OLINSD2ty+6gxcM8yZrvMqWdMePGRb2cGh8L/0bGOk+64IQ/pM= It looks like I can use ECPublicKeySpec .

问题 I need to be certain that jce is available even in JRE environments out of the box. After furious googling I only managed to verify that jce comes bundled with the JDK after Java 1.4. Does the jce come bundled with the plain JRE download as well? Could you point out where you found the information, so I can verify for myself and know what I missed? 回答1: yes, the jce is included in all versions of java these days, relevant announcement. 回答2: Have you had a look at $JRE_HOME/lib/jce.jar ? ~$