JDK-6560751 : Update DSA implementation according to FIPS 186-3
  • Type: Enhancement
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 7
  • Priority: P3
  • Status: Resolved
  • Resolution: Duplicate
  • OS: generic
  • CPU: generic
  • Submitted: 2007-05-22
  • Updated: 2023-11-29
  • Resolved: 2016-05-24
Related Reports
Duplicate :  
JDK-7044060 - Need to support NSA Suite B Cryptography algorithms
Relates :  
JDK-6561126 - keytool should use larger default keysize for keypairs
Description
FIPS 186-3, which is currently in draft [http://csrc.nist.gov/publications/drafts/fips_186-3/Draft-FIPS-186-3%20_March2006.pdf] defines DSA with key size larger than 1024 bit and with hash functions other than SHA-1. The DSA implementation in the SUN provider should be updated to support that.
New version of the draft at
http://csrc.nist.gov/publications/drafts/fips_186-3/Draft_FIPS-186-3%20_November2008.pdf
Standard has now been adopted by FIPS : http://csrc.nist.gov/publications/fips/fips186-3/fips_186-3.pdf
Comments
see JDK-7044060: Need to support NSA Suite B Cryptography algorithms
24-05-2016
Yes, I think so. I will close this accordingly.
24-05-2016
We did parts of this for JDK 8, is this now a duplicate?
11-02-2015
EVALUATION Also consider lifting the same restriction on DSA (6521495)
10-05-2010