The Legion of the Bouncy Castle has released version 1.23 of the Bouncy Castle Java Cryptography API, an open source, clean-room implementation of the Java Cryptography Extension (JCE). It supports X.509 certificates, PKCS12, S/MIME, CMS, PKCS7, and lots of other juicy acronyms. It also includes its own light-weight crypto API that works in Java 1.0 and later, and does not depend on the JCE. Version 1.23 "contains further improvements to the OpenPGP package which improves the range of other implementations we are compatible with and a heuristic decoder has been added which "guesses" whether or not it is dealing with an armored input stream or a PGP binary stream. The OpenPGP examples have been rewritten to take advantage of new API features, and an unpacking problem which was occasionally causing the OpenPGP API to fail doing El Gamal decryption has been fixed. RipeMD160 and RipeMD320 have been added and support for RipeMD has been added to the CMS/SMIME handlers. A number of other bugs and issues have also been addressed." Download it while it's still legal.