iSaSiLk 5.105 Maintenance release fixes some ECC related issues.
New versions of our CMS based toolkits IAIK-CMS, IAIK-TSP and [CP]AdES are now available for download! [CP]AdES now supports CAdES/PAdES LTA level signatures, Content Time Stamp and Archive Time Stamp (v3) Validation according to the most recent ETSI EN 319 122-1 and TS 101 733 standards.
IAIK-JCE works on any Java™ version starting with JDK 1.2 up to the most recent versions. Due to US Law Export Regulations JDK versions prior 1.4 do not contain the original Java™ JCE APIs. For that reason IAIK-JCE provides a re-implementation of the entire Java™ Cryptography Extension from SUN:
With JDK1.4 the JCE framework (JAVAX CRYPTO) has been incorporated into the standard JDK. However, because of export regulations a JCE provider only can be used with JDK 1.4 or later if it is signed. For that reason we provide a signed version of our crypto toolkit IAIK-JCE, too.
IAIK-JCE comes with its own security provider offering a great variety of cryptographic services, algorithms and secure random number generators. The X.509 package supports X.509 public key, qualified and attributes certificates, revocation information handling via CRLs and OCSP, and searching and downloading certificates or CRLs from LDAP directories.. Comprehensive ASN.1 and PKCS APIs allow easy modelling of ASN.1 structures, secure storing of sensitive keying and data material, and signing or encrypting digital documents. An extensive demo source library makes it easy to soon become familiar with Cryptography for the Java™ platform and IAIK-JCE.
Since IAIK-JCE version 5.0 we have been delivering an optional AES addon, which makes use of the AES-NI instruction set extensions of modern x86 CPUs. Using this addon the throughput of AES can be sped up tremendously. Take a look at our speed tables to see the difference.
The provider architecture has been introduced by the Java™ Cryptographic Architecture (JCA), making it possible for different cryptographic implementations to operate on common interfaces (consult the Java™ Cryptography Architecture API Specification & Reference).
The term provider is an abbreviation for Cryptographic Package Provider and denotes a package or a set of packages supplying concrete implementations of some cryptographic services of the Java™ Cryptography API (see JCA). A JCA provider may realise implementations of digital signature, message digest and key pair generation algorithms, certificate factories and keystores. If the JCA API is extended by the Java™ Cryptography Extension (JCE) API, a provider may also implement encryption, message authentication and key exchange algorithms.
The master class of the IAIK security package provider is class IAIK of package iaik.security.provider. It extends class java.security.Provider for registering the IAIK provider specific cryptographic implementations within the Java™ cryptography architecture. The IAIK provider supports both, algorithm implemetations for JCA and for the JCE extension (see below).