JDK-8186094 : Release Note: Updated Java Cryptography Jurisdiction Policy File Mechanism
  • Type: Sub-task
  • Component: security-libs
  • Sub-Component: javax.crypto
  • Affected Version: 9
  • Priority: P3
  • Status: Closed
  • Resolution: Delivered
  • Submitted: 2017-08-11
  • Updated: 2017-09-22
  • Resolved: 2017-08-12
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
This release introduces several changes to the JCE Jurisdiction Policy files. 

Previously, to allow unlimited cryptography in the JDK, separate JCE Jurisdiction Policy files had be be downloaded and installed. The download and install steps are no longer necessary.  

1.  Both the strong but "limited" (traditional default) and the "unlimited" policy files are included in this release.

2.  A new Security property (`crypto.policy`) was introduced to control which policy files are active.  The new default is "unlimited".

3.  The files are now user-editable to allow for customized Policy configuration.

Please see the Java Cryptography Architecture (JCA) Reference Guide  for more information.

Also see:

JDK-8186093: java.security configuration file still says that "strong but limited" is the default value