Re: RFR: 8290824: Use InputStream.readAllBytes() instead of surrogate code

On Thu, 21 Jul 2022 15:37:40 GMT, Сергей Цыпанов wrote: > We can use `InputStream.readAllBytes()` in `ModuleHashes` and `X509CertPath`. Why do you say “instead of surrogate code”? I don’t see any Unicode surrogate processing here, but maybe you mean something else. Would “instead of explicit l

Re: RFR: 8290824: Use InputStream.readAllBytes() instead of surrogate code

On Thu, 21 Jul 2022 15:37:40 GMT, Сергей Цыпанов wrote: > We can use `InputStream.readAllBytes()` in `ModuleHashes` and `X509CertPath`. If by “surrogates” you mean “substitutes”, then this wording is confusing. At the time these explicit loops were written they weren’t surrogates for anything,

New candidate JEP: 452: Key Encapsulation Mechanism API

https://openjdk.org/jeps/452 Summary: Introduce an API for key encapsulation mechanisms (KEMs), an encryption technique for securing symmetric keys using public key cryptography. - Mark

New candidate JEP: 478: Key Derivation API (Preview)

https://openjdk.org/jeps/478 Summary: Introduce an API for Key Derivation Functions (KDFs), which are cryptographic algorithms for deriving additional keys from a secret key and other data. This is a preview API. - Mark

New candidate JEP: 486: Permanently Disable the Security Manager

// Correcting Sean’s e-mail address https://openjdk.org/jeps/486 Summary: The Security Manager has not been the primary means of securing client-side Java code for many years, it has rarely been used to secure server-side code, and it is costly to maintain. We therefore deprecated it for

New candidate JEP: 486: Permanently Disable the Security Manager

https://openjdk.org/jeps/486 Summary: The Security Manager has not been the primary means of securing client-side Java code for many years, it has rarely been used to secure server-side code, and it is costly to maintain. We therefore deprecated it for removal in Java 17 via JEP 411 (20

New candidate JEP: 497: Quantum-Resistant Module-Lattice-Based Digital Signature Algorithm

https://openjdk.org/jeps/497 Summary: Enhance the security of Java applications by providing an implementation of the quantum-resistant Module-Lattice-Based Digital Signature Algorithm (ML-DSA). Digital signatures are used to detect unauthorized modifications to data and to authenticate t

New candidate JEP: 496: Quantum-Resistant Module-Lattice-Based Key Encapsulation Mechanism

https://openjdk.org/jeps/496 Summary: Enhance the security of Java applications by providing an implementation of the quantum-resistant Module-Lattice-Based Key-Encapsulation Mechanism (ML-KEM). Key encapsulation mechanisms (KEMs) are used to secure symmetric keys over insecure communicat

Re: RFR: 8298420: PEM API: Implementation (Preview) [v14]

On Thu, 17 Apr 2025 15:51:09 GMT, Anthony Scarpino wrote: >> Hi all, >> >> I need a code review of the PEM API. Privacy-Enhanced Mail (PEM) is a >> format for encoding and decoding cryptographic keys and certificates. It >> will be integrated into JDK24 as a Preview Feature. Preview featur

New candidate JEP: 510: Key Derivation Function API

https://openjdk.org/jeps/510 Summary: Introduce an API for Key Derivation Functions (KDFs), which are cryptographic algorithms for deriving additional keys from a secret key and other data. - Mark

New candidate JEP: 470: PEM Encodings of Cryptographic Objects (Preview)

https://openjdk.org/jeps/470 Summary: Introduce an API for encoding objects that represent cryptographic keys, certificates, and certificate revocation lists into the widely-used Privacy-Enhanced Mail (PEM) transport format, and for decoding from that format back into objects. This is a p

Re: RFR: 8298420: Implement JEP 470: PEM Encodings of Cryptographic Objects (Preview) [v24]

On Tue, 27 May 2025 23:00:59 GMT, Anthony Scarpino wrote: >> Hi all, >> >> I need a code review of the PEM API. Privacy-Enhanced Mail (PEM) is a >> format for encoding and decoding cryptographic keys and certificates. It >> will be integrated into JDK25 as a Preview Feature. Preview featur