JDK-8159998 : Release Note: Default key sizes for the AlgorithmParameterGenerator and KeyPairGenerator implementations updated
- Type: Sub-task
- Component: security-libs
- Sub-Component: java.security
- Affected Version: 9
- Priority: P4
- Status: Closed
- Resolution: Delivered
- Submitted: 2016-06-21
- Updated: 2017-09-22
- Resolved: 2016-06-21
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
| JDK 9 |
|---|
9Resolved  |
Description
To improve security, the default key size for the RSA and DiffieHellman `KeyPairGenerator` implementations and the DiffieHellman `AlgorithmParameterGenerator` implementations has been increased from 1024 bits to 2048 bits. The default key size for the DSA `KeyPairGenerator` and `AlgorithmParameterGenerator` implementations remains at 1024 bits to preserve compatibility with applications that are using keys of that size with the SHA1withDSA signature algorithm. With increases in computing power and advances in cryptography, the minimum recommended key size increases over time. Therefore, future versions of the platform may increase the default size.