Is there a practical way to determine which JCE crypto providers are used?

Question

Is there a practical way to determine which JCE crypto providers are used?

We have configured the Java product to use only RSA JCE cryptographic services certified by FIPS. However, the product will not work if only RSA libraries are listed in java.security. Therefore, something is requesting non-FIPS algorithms from another provider.

In the process of elimination, we can say which banks are necessary for successful work, but this does not tell us which algorithms are requested or by whom.

This seems like a frequently asked question, but obviously we have not stumbled upon the correct documentation or the Google search bar: is there any reliable, convenient and consistent mechanism for determining which JCE providers are used in the running instance of the JVM

+5

java cryptography rsa jce provider

KarlU May 23 '11 at 18:53

source share

4 answers

Bruno rohée · Answer 1 · 2011-05-24T18:30:09+0000

Well, you can list providers using Security.getProviders () ;

Here is an example of list providers and the algorithms they implement .

Jumbogram · Answer 2 · 2011-05-24T23:24:08+0000

I suggest you implement your own ClassLoader and have log debugging information.

Although, I'm not sure if this will let you know about each class that FooJCEProvider loads, not just the first class to load FooJCEProvider.

jconsole? " MBean Verbose, "

Petey b · Answer 3 · 2011-05-25T01:56:44+0000

As Bruno stated, you can go through all the suppliers.

At run time, you can check which provider uses your Cipher using the getProvider method .

Daveh · Answer 4 · 2011-05-23T19:55:58+0000

Does System.setProperty("javax.net.debug","all")anything useful help you?

Is there a practical way to determine which JCE crypto providers are used?

More articles: