Legion of the Bouncy Castle Java Cryptography API
The Legion of the Bouncy Castle Java Cryptography API provides a lightweight cryptography API in Java, a provider for the JCE and JCA, a clean-room implementation of the JCE 1.2.1, generators for Version 1 and Version 3 X.509 certificates, generators for Version 2 X.509 attribute certificates, PKCS12 support, and APIs for dealing with S/MIME, CMS, OCSP, TSP, OpenPGP, and TLS. Versions are provided for the J2ME, and JDK 1.0-1.6.
| Tags | Security Cryptography Software Development Libraries |
|---|---|
| Operating Systems | OS Independent |
| Implementation | Java |
Recent releases
- 24 Feb 2011 12:10
Release Notes: This release adds support for client side SSL to the TLS API, and support for CMP (RFC 4210), CRMF (RFC 4211), and CMS TimeStampedData (RFC 5544). The CMS and TSP APIs have been rewritten and new APIs have been added for certificate generation and OCSP, which allow the use of interface based operators to provide cryptographic services. This means it is now possible to use the lightweight API, or any another small factor API, in addition to the JCE/JCA to provide cryptographic operations required to support all these standards.
- 15 Jan 2010 07:36
Release Notes: This release adds support for EC MQV to the light weight and CMS/SMIME libraries. In addition, OpenPGP now supports UTF-8 in file names for literal data. EC keys may now be serialized. The provider now makes use of a privileged block for constructing the provider table. ASN.1 processing has been reviewed to further reduce the likelihood of OutOfMemory errors for badly corrupted streams. Constant time comparisons have been introduced to remove the possibility of timing attacks in several areas such as with cipher modes like GCM and CCM.
- 10 Oct 2009 17:36
Release Notes: GCM mode is now around ten times faster. PSS signature support has been added to CMS and S/MIME. Support for EC encrypted keys has been added to the openSSL PEM classes. Bugfixes include correction of a date calculation error in GeneralisedTime when the time included microseconds, support for ECDH with the JSSE, and the J2ME SecureRandom now uses common seed material within the VM. A number of other fixes and enhancements have been made.
- 18 Apr 2009 00:43
Release Notes: This is a bugfix release. Multiple countersignatures in CMS/SMIME messages are now correctly collected, hashCode() for X509Name is now fully consistent with its equals() method, and the HC-128, HC-256 implementations have had a sign expansion and byte swap bug fixed and are now fully compliant with the latest Ecrypt test vectors. Note: if you are looking at using HC-128 or HC-256, you need to update to this release.
- 16 Mar 2009 16:45
Release Notes: This release adds Grain v1 and Grain128, as well as basic support for AuthenticatedData to the CMS API. Further work has been done to improve the BC APIs working with Provider objects rather than provider names, and JDK 1.5 and 1.6 jars are now pre-packaged with pack200. A number of other bugfixes and enhancements have also been made.
davidhook
20 Dec 2000 18:41
Heartbeat
- Popularity Score
- 208.40
- Vitality Score
- 22.33
- Subscriptions
- 85
