First, are there any documented vulns in java cryptography providers, such that one would prefer one over another?
Second, is there any significant reason (e.g. usability) to prefer a different API than the JCA/JCE? In short, if devs ask 'which crypto library should I use in java' is there any reason to prohibit anything in particular, or recommend anything in particular? I've been digging around this evening and haven't found much, and I'm sure someone on this list has done this research before. -- http://www.subspacefield.org/~travis/ Nil nisi clavis deest
pgpgVPBl9wV3T.pgp
Description: PGP signature
_______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
