Design and impl review: JEP 273: DRBG-Based SecureRandom Implementations

Wang Weijun weijun.wang at oracle.com
Mon Nov 23 07:03:28 UTC 2015


spec: http://cr.openjdk.java.net/~weijun/8051408/webrev.00/specdiff/java/security/package-summary.html
impl: http://cr.openjdk.java.net/~weijun/8051408/webrev.00/

- No more configure(), it's getInstance(alg, SecureRandomParameters) now.

- The *Spec class names are now *Parameters.

- Overloaded reseed() and reseed(additionalInput).

TBD: Should nextBytes(bytes,additionalInput) throw an UnsupportedOperationException for old implementations?

Thanks
Max




More information about the security-dev mailing list