A DESCRIPTION OF THE REQUEST :
JavaTM Cryptography Extension (JCE) desparately needs updating with new algorithms for Password-Based Encryption (PBE)!
I have source code which determines all of the available algorithms (ask me if you want a copy and I'll give it to you). The result when executed against JDK 1.5 for SecretKeyFactory (which is used for PBE) is the following list of algorithms:
This is bad--all of those algorithms are getting pretty obsolete by now.
are poor choices as digests, now that they have been cracked as mentioned in the links above; see also
You really need to offer the "SHA-2" varaiants of the SHA algorithm for use as digests with PBE. I would personally like to use SHA-512.
As for the encryption algorithm choices currently offered, DES has been hopelessly insecure for years
while DESEDE/TRIPLEDES has mediocre security and is very slow.
I would really like to see you offer AES, particularly AES-256 (256 bit keys), for use as an encryption algorithm with PBE.
Just look at all the other people who have been requesting this on your forums for years now:
Current algorithms supported are vulnerable and/or slow.
EXPECTED VERSUS ACTUAL BEHAVIOR :
Support modern algorithms.
CUSTOMER SUBMITTED WORKAROUND :
None. Cannot even goto Bouncy Castle for PBE with SHA-512 as the digest and AES-256 as the encryption algorithm.