RFR 8234465: Encoded elliptic curve private keys should include the public point
Weijun Wang
weijun.wang at oracle.com
Thu Dec 12 01:21:38 UTC 2019
Ping again. This is an enhancement.
> On Dec 10, 2019, at 5:45 PM, Weijun Wang <weijun.wang at oracle.com> wrote:
>
> Please review the code change at
>
> http://cr.openjdk.java.net/~weijun/8234465/webrev.00/
>
> The fix is mostly inside ECPrivateKeyImpl. When an EC keypair is newly generated, a copy of the ECPoint of the public key is put inside the private key. This ECPoint can be stored in a PKCS #8 file. When reading from a PKCS #8 file, it can also be loaded.
>
> Since the ECPrivateKey class interface and the ECPrivateKeySpec spec do not have the public ECPoint, an ECPrivateKeyImpl will not have this info when created from these sources. So it's still optional. I haven't tried to calculate it.
>
> Thanks,
> Max
>
More information about the security-dev
mailing list