[148161] in cryptography@c2.net mail archive
Re: [Cryptography] Looking for feedback on new Java crypto library
daemon@ATHENA.MIT.EDU (Max Kington)
Wed Nov 13 14:51:36 2013
X-Original-To: cryptography@metzdowd.com
In-Reply-To: <CACJAJ58dy63ZK0KX5pWE06O1H8Ou92McHXC5XrMvc3P5uX1fVw@mail.gmail.com>
Date: Wed, 13 Nov 2013 07:31:27 +0000
From: Max Kington <mkington@webhanger.com>
To: Steve Weis <steveweis@gmail.com>
Cc: James Yonan <james@openvpn.net>, cryptography@metzdowd.com
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
--===============7751195224690840923==
Content-Type: multipart/alternative; boundary=089e013c6ede0309f204eb09f47f
--089e013c6ede0309f204eb09f47f
Content-Type: text/plain; charset=ISO-8859-1
On 13 Nov 2013 00:33, "Steve Weis" <steveweis@gmail.com> wrote:
>
> Hi James. Have you checked out Keyczar? It has similar goals and Google
has been maintaining it for use in some Android libraries:
> https://code.google.com/p/keyczar/
>
> One main difference I see on quick inspection is that JACS uses
InputStream and OutputStream interfaces and derives keys from user-entered
passwords. Keyczar works on ByteBuffers, byte[], and String inputs, and
handles key versioning and rotation. Plus, it has been ported to Python and
C++.
Why would you use this over bouncycastle? Which is well established and
examined and incredibly complete. Not to mention cross platform.
>
> On Mon, Nov 11, 2013 at 1:09 PM, James Yonan <james@openvpn.net> wrote:
>>
>> I'm releasing a new open source Java library that focuses on encryption
of files and streams in a way that tries to integrate current crypto
best-practices with a foolproof API, while building on the existing Java
Cryptography Extension (JCE).
>
>
> _______________________________________________
> The cryptography mailing list
> cryptography@metzdowd.com
> http://www.metzdowd.com/mailman/listinfo/cryptography
--089e013c6ede0309f204eb09f47f
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
<p dir=3D"ltr"><br>
On 13 Nov 2013 00:33, "Steve Weis" <<a href=3D"mailto:stevewei=
s@gmail.com">steveweis@gmail.com</a>> wrote:<br>
><br>
> Hi James. Have you checked out Keyczar? It has similar goals and Googl=
e has been maintaining it for use in some Android libraries:<br>
> <a href=3D"https://code.google.com/p/keyczar/">https://code.google.com=
/p/keyczar/</a><br>
><br>
> One main difference I see on quick inspection is that JACS uses InputS=
tream and OutputStream interfaces and derives keys from user-entered passwo=
rds. Keyczar works on ByteBuffers, byte[], and String inputs, and handles k=
ey versioning and rotation. Plus, it has been ported to Python and C++.<br>
</p>
<p dir=3D"ltr">Why would you use this over bouncycastle? Which is well esta=
blished and examined and incredibly complete. Not to mention cross platform=
. <br>
><br>
> On Mon, Nov 11, 2013 at 1:09 PM, James Yonan <<a href=3D"mailto:jam=
es@openvpn.net">james@openvpn.net</a>> wrote:<br>
>><br>
>> I'm releasing a new open source Java library that focuses on e=
ncryption of files and streams in a way that tries to integrate current cry=
pto best-practices with a foolproof API, while building on the existing Jav=
a Cryptography Extension (JCE).<br>
><br>
><br>
> _______________________________________________<br>
> The cryptography mailing list<br>
> <a href=3D"mailto:cryptography@metzdowd.com">cryptography@metzdowd.com=
</a><br>
> <a href=3D"http://www.metzdowd.com/mailman/listinfo/cryptography">http=
://www.metzdowd.com/mailman/listinfo/cryptography</a><br>
</p>
--089e013c6ede0309f204eb09f47f--
--===============7751195224690840923==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
--===============7751195224690840923==--
