ibmjcefips.jar not at version 1.8 · Issue #160 · IBM/developer
Description. steigerwalda. opened on Nov 14, 2019. All current distributions of ibmjcefips. jar should be version 1.8. See https:/ IBM JCE FIPS 140-2 Cryptographic Module Security Policy Ibmjcefips.jar
In the world of IBM Java, was the primary provider of "Federal standard" encryption. ibmjcefips
A flaw was discovered where a specific algorithm (HASHDRBG) wasn't "re-seeding" properly, which could have compromised security. This required a quick patch to remain compliant with NIST rules. All current distributions of ibmjcefips
IBM decided not to renew the certificate for this specific module. Instead, they introduced a successor designed for a faster, more modern web: (housed in ibmjceplus.jar ).
It allowed Java applications to use approved cryptographic algorithms like AES, TripleDES, and RSA for securing data.
Like any long-running piece of software, its history was marked by technical hurdles that kept system administrators busy.