![]() ![]() An issue in the BCTLS API has been fixed that could cause null pointer exceptions negotiating TLS 1.1 connections. Release 1.76 is now available for download.ġ.76 is a mixed release. Note: the above jars are not certified, but are the closest thing to release candidates for the next update. The submission BC-FJA 1.0.2.4 jar now has its CAVP certificate and is making its way through the submission process. Where they are not set, the jar will behave as if the transition has taken place. Where the above properties are set to "true" the jar behave exactly like 1.0.2.3. Properties Applying to RSA PKCS1.5 Encryption: It is possible to get the jar to behave identically to BC-FJA 1.0.2.3 in respect to the transition by making use the following security properties: The BC-FJA 1.0.2.4 non-certified release candidate is a drop in replacement for BC-FJA 1.0.2.3 which fixes the issues observed with Java 13 and later and also provides support for dealing with the RSA PKCS 1.5 encryption transition and the TDES transition taking place at the end of 2023. ![]() Note: the interaction does not occur with BC-FJA 1.0.2.3 where it is used in accordance with its security policy on the JVMs that testing was done on. The BC-FJA 1.0.2.4 non-certified release candidate has come about as there is that changes in the JVM have lead to an interaction with BC-FJA 1.0.2.3 which makes it unsafe to use BC-FJA 1.0.2.3 with Java 13 or later (for a fuller description see the write up for CVE-2022-45146). Latest Java Releases BC-FJA 1.0.2.4 - Non Certified FIPS Release Candidate available for download ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |