The encryption used by JCEKS keyStore in the JavaTM cryptography extension ..?

Question

The encryption used by JCEKS keyStore in the JavaTM cryptography extension ..?

In JCEKS key Store the algorithm used and the size of the key.
i find something that its using Triple DES

but what is the key size ..?

Thanks x

+6

java encryption

Sumit singh May 15 '12 at 9:05

source share

2 answers

JCEKS is another proprietary key store format available from the SunJCE provider in JCE (Java Cryptography Extension).

If you are not using JCE, then you will use the JKS keystore. If, however, you installed JCE and you use JCE functionality, then the JCEKS keystore is the best choice. This keystore provides much better protection for stored private keys with Triple DES encryption.

+1

raoadnan May 23 '13 at 21:29

source share

erickson · Accepted Answer · 2012-05-15T18:43:39+0000

Currently, each PrivateKey and SecretKey in the JCEKS keystore is encrypted with a triple triple DES in CBC mode with PKCS # 5 add-on. This has an effective cryptographic strength of 112 bits, although the key is 168 bits plus 24 parity bits for a total of 192 bits.

This key (and initialization vector) is derived from the password using a patented algorithm based on MD5. Usually, deducing an initialization vector from a key will lead to a hit of the target, but each record also has a unique salt for outputting keys. This means that the derived key and initialization vector are unique for each record.

You can study the use of encryption and the cipher itself in the source code.

The encryption used by JCEKS keyStore in the JavaTM cryptography extension ..?

More articles: