The Legion of the Bouncy Castle has released version 1.41
of the Bouncy Castle Java Cryptography API, an open source,
clean-room implementation of the Java Cryptography Extension (JCE).
It supports X.509 certificates, PKCS12, S/MIME, CMS, PKCS7, TEA, XTEA, SHA224, and lots of other juicy acronyms. It also includes its own light-weight crypto API that works in Java 1.0 and later, and does not depend on the JCE.
According to the announcement:
his release features speedups to the Camellia cipher as well as an alternative implementation, CamelliaLightEngine, with reduced memory footprint. The ECDSA implementation is now compliant with X9.62-2005, OpenPGP, S/MIME, and CMS now support passing of providers as well as provider names, S/MIME handles a wider range of special cases for signature verification and range of other improvements have been made to the J2ME, CMS, S/MIME and OpenPGP APIs. In addition a regression from 1.38 for handling PKIXCertPathCheckers on intermediate certificates is fixed.
Download it while it's still legal.