Monday, March 28, 2005
From the [Cryptix] OpenPGP README:
The default distribution of the JCE allows as Sun calls it 'strong, but limited strength cryptography'. This basically means that you cannot use RSA keys bigger than 2048 bits, and no symmetric ciphers that use more than 128 bits. ElGamal is not allowed at all, thus DH/DSS cannot be used for encryption. This holds true for most non-Sun crypto providers (Cryptix and BouncyCastle are what I have been working with). While there are install instructions for other platforms, the Mac OS X install works slightly differently. Instructions for enabling “unlimited” JCE crypto on Mac OS 10.3.x [here] (Thanks to the infamous Vinnie for hosting the MacCrypto forum, no matter how low the traffic is) UPDATE If you are working with JCEs on Mac OS X, you'll also be interested in [this document from Sun] on the java.security file, which on Mac OS X is located at:
JavaVM.framework/Versions/1.4.2/Home/lib/security/java.security
[ 3/28/2005 10:09:00 PM ] [
0 comments
]
|