Bug ID: JDK-8255680 Add more encryption schemes to SunJCE password-based encryption scheme 2 params

JDK-8255680 : Add more encryption schemes to SunJCE password-based encryption scheme 2 params

Type: Enhancement
Component: security-libs
Sub-Component: javax.crypto

Priority: P4
Status: Open
Resolution: Unresolved

Submitted: 2020-10-30
Updated: 2022-11-30

Related Reports

Relates :	JDK-8076999 - SunJCE support of password-based encryption scheme 2 params (PBES2) not working
Relates :	JDK-8202837 - PBES2 AlgorithmId encoding error in PKCS12 KeyStore

Description

The current SunJCE implementation of PBES2Parameters.java only allows for AES-CBC encryption schemes.  Per RFC 8018, there are a number of other encryption schemes that could be added as well as a few other PRF algorithms.  This would expand the ability of the PBES2Parameters class to read PBES2 parameter blocks encrypted using other ciphers and with other PRFs.

Comments

Because there were many bugs cited in the original JDK-8076999 that were solved in JDK-8202837, it was decided that the remaining enhancement portion of that original bug be moved into a separate RFE and the original bug/RFE closed.

30-10-2020