Bug ID: 7106773 512 bits RSA key cannot work with SHA384 and SHA512

Community
Java Embedded
Java Card
Java DB
Java EE
JavaFX
Java Magazine
Java ME
Java SE Advanced & Suite
Java SE
Java SE Support
Java Advanced
Java TV
New to Java
Web Tier

7106773 : 512 bits RSA key cannot work with SHA384 and SHA512

Details

Type:	Enhancement	Submit Date:	2011-10-31
Status:	Closed	Updated Date:	2012-04-13
Project Name:	JDK	Resolved Date:	2012-04-13
Component:	security-libs	OS:	generic
Sub-Component:	javax.net.ssl	CPU:	generic
Priority:	P3
Resolution:	Fixed
Affected Versions:	7,8
Fixed Versions:	8

Related Reports

Backport:	JDK-2219641 - 512 bits RSA key cannot work with SHA384 and SHA512
Duplicate:	JDK-7132249 - sun/security/pkcs11/KeyStore/ClientAuth.sh failing on Solaris and Linux

Sub Tasks

Description

Signature algorithms, such as "SHA384withRSA" and "SHA512withRSA", requie that the hash length should be less than the key size. If the RSA key size is 512 bits, it will not be able to use with the SHA384 and SHA512.

We may need an improvement to check the key size with the hash length while selecting a preferable signature algorithm from supported_signature_algorithms hello extension.

Comments

EVALUATION

should support hash function filter for small key size

2012-01-12

SELECT A COUNTRY/REGION
Africa Operation Argentina Australia Austria Bahrain Bangladesh Belgium & Luxembourg Belize Bhutan Bolivia Bosnia & Herzegovina Brasil Brunei Bulgaria Cambodia Canada - English Canada - French Chile China Colombia	Costa Rica Croatia Cyprus Czech Republic Denmark Ecuador Egypt Estonia Finland France Germany Greece Guatemala Honduras Hong Kong Hungary India Indonesia Iraq Ireland	Israel Italy Japan Jordan Kazakhstan Korea Kuwait Laos Latvia Lebanon Lithuania Malaysia Maldives Malta Mexico Moldova Nepal Netherlands New Zealand Nicaragua	Norway Oman Pakistan Panama Paraguay Peru Philippines Poland Portugal Puerto Rico Qatar Romania Russia Saudi Arabia Serbia & Montenegro Singapore Slovakia Slovenia South Africa Spain	Sri Lanka Sweden Switzerland -- French Switzerland -- German Taiwan Thailand Turkey Ukraine United Arab Emirates United Kingdom United States Uruguay Venezuela Vietnam Yemen

Hardware and Software, Engineered to Work Together