The Legion of the Bouncy Castle has released version 1.44
of the Bouncy Castle Java Cryptography API, an open source,
clean-room implementation of the Java Cryptography Extension (JCE).
It supports X.509 certificates, PKCS12, S/MIME, CMS, PKCS7, TEA, XTEA, SHA224, and lots of other juicy acronyms. It also includes its own light-weight crypto API that works in Java 1.0 and later, and does not depend on the JCE. "GCM mode is now around 10x faster, PSS signature support has been added
to CMS and S/MIME, and support for EC encrypted keys has been added to
the openSSL PEM classes. Bug fixes include correction of a date
calculation error in GeneralisedTime when the time included
microseconds, support for ECDH with the JSSE, and the J2ME SecureRandom
now uses common seed material within the VM. A number of other fixes and
enhancements have been made."