United StatesChange Country, Oracle Worldwide Web Sites Communities I am a... I want to...
Bug ID: JDK-6845600 Add support for rsa-sha256, rsa-sha512 SignatureMethod algorithms to XML DSig implementation
JDK-6845600 : Add support for rsa-sha256, rsa-sha512 SignatureMethod algorithms to XML DSig implementation

Details
Type:
Enhancement
Submit Date:
2009-05-27
Status:
Resolved
Updated Date:
2012-10-23
Project Name:
JDK
Resolved Date:
2009-09-09
Component:
security-libs
OS:
solaris_10
Sub-Component:
javax.xml.crypto
CPU:
sparc
Priority:
P3
Resolution:
Fixed
Affected Versions:
6
Fixed Versions:
6u18 (b01)

Related Reports

Sub Tasks

Description
We should add support for the SHA256withRSA and SHA512withRSA SignatureMethod algorithms to our XML DSig implementation in JDK 6. This is a fairly trivial change that will provide users with stronger signature algorithms in JDK 6. Recent cryptographic analysis has revealed weaknesses in the long term collision resistance of the SHA1 algorithm, so providing these stronger algorithms is important. The underlying JCE support is already there, so this is just a matter of adding a small amount of code.

                                    

Comments
EVALUATION

Yes, we should add these stronger algorithms.
                                     
2009-08-03



Hardware and Software, Engineered to Work Together