Java News from Saturday, March 17, 2007

According to Mark Reinhold, Sun will not be able to fully release the JDK under the GPL in the near future. they're a couple of critical graphics components they don't own and can't open source. These will only be released as binaries. They hope to be able to reimplement and replace these in the future.

The Legion of the Bouncy Castle has released version 1.36 of the Bouncy Castle Java Cryptography API, an open source, clean-room implementation of the Java Cryptography Extension (JCE). It supports X.509 certificates, PKCS12, S/MIME, CMS, PKCS7, TEA, XTEA, SHA224, and lots of other juicy acronyms. It also includes its own light-weight crypto API that works in Java 1.0 and later, and does not depend on the JCE. According to the announcement:

This release adds the SEED and Salsa20 algorithms, support for the SHA family with RSA-PSS for certificate, CRL, and certification request generation, and fixes a regression that occured in 1.35 for generating S/MIME signatures for signed multi-part documents with nested preamble and an error in the UTF8 decoder which affected some surrogate pairs. In addition S/MIME and CMS now support SEED, Camellia, and EC based key agreement as specified in X9.63.

Download it while it's still legal.