Description
The Dell BSAFE team announces the release of Dell BSAFE Crypto-J 6.2.6 (Crypto-J). This release integrates Dell BSAFE Crypto-J 6.2.5 JCM as its underlying FIPS provider.
This Service Release is designed to include:
- The following new feature:
- Certificate signing support using RSA-PSS.
- The following changed feature:
- Crypto-J JCE jars signed and timestamped by latest JCE Code Signing CA.
- The following fixes:
- keyLength is not handled correctly for PKCS #12 shrouded private keys
- KeyBuilder.newECParams does not check for NamedCurve matches for performance improvement: Existing acceleration tables are used for P256 and P384 named curves
- ArrayIndexOutOfBoundException thrown if full initialization vector is a 0 byte array
- RSA signature verify fails when PSS parameters are different from the default values
- JCE KeyFactory does not support SHA1withRSAPSS
- PEM key encoding is not compatible with the OpenSSL PKCS #8 format
- Default PBE iteration count is too low
- Incorrect detection of certain OpenJDK ports.
No security issues are addressed in this release.
For BSAFE documentation, downloads and more, contact
Dell Support.