oxf.crypto.key-length and JRE 9+

9 views

Skip to first unread message

Sébastien Santoro (Dereckson)

unread,

May 24, 2023, 8:00:50 PM5/24/23

to Orbeon Forms

Currently, the documentation states JVM doesn't support more than 128 bits for AES encryption key.

This information seems outdated, as recent JRE, including JRE 9+, support without any extra download 192 and 256 bits for AES encryption key.

---

URL: https://doc.orbeon.com/configuration/properties/general#oxf.crypto.key-length

Text: "Higher strength encryption is usually not enabled by default in the JVM. See Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files. When higher strength encryption is available, this value can be changed to 256, for example."

---

References :

- https://bugs.java.com/bugdatabase/view_bug?bug_id=8170157
- https://www.oracle.com/java/technologies/javase-jce-all-downloads.html
- https://en.wikipedia.org/wiki/Bernstein_v._United_States
- https://cr.yp.to/export.html

Reply all

Reply to author

Forward

0 new messages

Search

Clear search

Close search

Google apps

Main menu