JDK-8151405 : Doc changes for JDK-8138653
  • Type: Enhancement
  • Component: docs
  • Sub-Component: guides
  • Affected Version: 9
  • Priority: P3
  • Status: Resolved
  • Resolution: Fixed
  • Submitted: 2016-03-07
  • Updated: 2016-05-19
  • Resolved: 2016-05-19
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 9
9Fixed
Related Reports
Relates :  
JDK-8138653 - Default key sizes for the AlgorithmParameterGenerator and KeyPairGenerator implementations should be upgraded
Description
Default keysizes have been updated as part of JDK-8138653, so the security guides need to be updated:

1. http://docs.oracle.com/javase/8/docs/technotes/guides/security/crypto/HowToImplAProvider.html

Key Pair Generators
"For example, the Diffie-Hellman key pair generator supplied by the SunJCE provider uses a default prime modulus size (keysize) of 1024 bits."

s/1024/2048/

Algorithm Parameter Generators
"For example, the SunJCE provider uses a default prime modulus size (keysize) of 1024 bits for the generation of Diffie-Hellman parameters"

s/1024/2048

Default Initializations
"and the "SunJCE" provider uses a default modulus size (keysize) of 1024 bits for the generation of Diffie-Hellman parameters."

"For example, the DSA key pair generator in the Sun provider supplies a set of pre-computed p, q, and g default values for the generation of 512, 768, and 1024-bit key pairs."

s/and 1024-bit/1024, and 2048-bit/

2. http://docs.oracle.com/javase/8/docs/technotes/guides/security/SunProviders.html

Keysize Restrictions
In the table for RSA for SunRsaSign provider, change the default (2nd column) from 1024 to 2048.

In both tables for Diffie-Hellman for SunJCE provider, change the default (2nd column) from 1024 to 2048.

In the table for RSA for SunMSCAPI provider, change the default (2nd column) from 1024 to 2048.
Comments
The oracle review link: http://review.us.oracle.com/review2/Review.html#reviewId=277252;scope=review;matchType=any;matchValue=6a6361;documentId=1163921;noteId=3677610;status=closed [The fix was reviewed by Sean Mullen]
19-05-2016