Since java 1.8.0_152, it has become very easy to activate JCE with unlimited strength. Simply uncomment the following line in /path/to/jdk/jre/lib/security/java.security:
crypto.policy=unlimited
Advertisements
Java: test JCE strength
To quickly test if JCE with unlimited strength is activated on your java installation, run this:
import javax.crypto.Cipher;
class JceTest {
public static void main(String[] args) {
try {
int maxKeyLen = Cipher.getMaxAllowedKeyLength("AES");
System.out.printf("maxKeyLen=%d%n", maxKeyLen);
if(maxKeyLen == 2147483647) {
System.out.println("JCE with unlimited strength activated.");
} else {
System.out.println("JCE with unlimited strength NOT activated!");
}
} catch (Exception e){
System.out.println("Sad world :(");
}
}
}
