Problem
JCE has been integrated into the Java 2 SDK since the 1.4 release.
Below diagram shows a general overview of Java cryptographic architecture. What we are discussing in this post is related to JCE implementation provided by Sun/Oracle.
As per the Oracle documentation -
Due to import control restrictions by the governments of a few countries, the jurisdiction policy files shipped with the JDK 5.0 from Sun Microsystems specify that "strong" but limited cryptography may be used.
That mean JDK has a deliberate key size restriction by default. So you cannot perform an encryption with key more than 128 bits (16 bytes). If you do you will get an error something like -
Caused by: java.security.InvalidKeyException: Illegal key size or default parameters
If you get this Exception there is nothing wrong that you are doing. It's just the restriction on the encryption key that comes built into the JDK.
The reason for this is that some countries have restrictions on the permitted key strength used in encryption algorithms.
Again as per the documentation -
An "unlimited strength" version of these files indicating no restrictions on cryptographic strengths is available for those living in eligible countries (which is most countries). But only the "strong" version can be imported into those countries whose governments mandate restrictions. The JCE framework will enforce the restrictions specified in the installed jurisdiction policy files.
Update - Updates Since Java 8 and Java 9
There have been multiple updates since Java 8 and 9. Before you dive down into more details review this section based on the Java version you are using. I have shown how to resolve this issue with various Java versions in the video below.
Java 9 and higher :
The Unlimited Strength Jurisdiction Policy Files are included with Java 9 and used by default (see Security Updates in the Java 9 Migration Guide).
If you get this error with Java 9, it might mean the policy configuration has been changed to a more restrictive policy (limited), see the instructions from the migration guide:
It states -
JCE Jurisdiction Policy File Default is Unlimited
If your application previously required the Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files, then you no longer need to download or install them. They are included in the JDK and are activated by default.
If your country or usage requires a more restrictive policy, the limited Java cryptographic policy files are still available.
If you have requirements that are not met by either of the policy files provided by default, then you can customize these policy files to meet your needs.
See the crypto.policy Security property in the <java-home>/conf/security/java.security file, or Cryptographic Strength Configuration in the Java Platform, Standard Edition Security Developer's Guide.
Java 8 Update 161 and higher
Starting with Java 8 Update 161, Java 8 defaults to the Unlimited Strength Jurisdiction Policy. If you receive this error, it could indicate the configuration has been changed to limited. See instructions in the next section on Java 8 Update 151, or the previous section on Java 9, for changing this back to unlimited.
Java 8 Update 151 and higher
Starting with Java 8 Update 151, the Unlimited Strength Jurisdiction Policy is included with Java 8 but not used by default. To enable it, you need to edit the java.security file in <java_home>/jre/lib/security (for JDK) or <java_home>/lib/security (for JRE). Uncomment (or include) the linecrypto.policy=unlimited
Make sure you edit the file using an editor run as administrator.
The policy change only takes effect after restarting the JVM (this is especially important for long-running server processes like Tomcat).
For backward compatibility, installing the policy files as documented in the next section will still work as well.
Before Java 8 Update 151 - Removing the maximum key size restriction
You can remove the maximum key restriction by replacing the existing JCE jars with unlimited strength policy jars.
Download the zip file extract the jars and replace them in your JDK/JRE.
For this Copy local_policy.jar and US_export_policy.jar extracted from above zip file to the $JAVA_HOME/jre/lib/security
Note: These jars will already be present there so you will have to overwrite them.
Then simply restart your java application and the Exception should be gone.
NOTE: If you are using Ubuntu and the webupd8 PPA, you can simply run -
NOTE: If you are using Ubuntu and the webupd8 PPA, you can simply run -
- apt-get install oracle-java8-unlimited-jce-policy
An alternate way to maximum encryption key size problem
This way is really a workaround. In fact, this approach is the workaround to all problems and it's not straightforward. Yeah you must have guessed it by now - Reflection
You can override the restriction with Reflection as follows -
try { Field field = Class.forName("javax.crypto.JceSecurity").getDeclaredField("isRestricted"); field.setAccessible(true); field.set(null, java.lang.Boolean.FALSE); } catch (Exception ex) { ex.printStackTrace(); }
Note 1: I do not recommend the Reflection approach as it's hacky. If you are using it keep it for testing only. Don't put it in production code :)
Note 2: As the change of replacing policy files is in JDK itself you will have to do it in all your servers. Also, you will have to ask all your clients to do so.
Note 2: As the change of replacing policy files is in JDK itself you will have to do it in all your servers. Also, you will have to ask all your clients to do so.
Finding the maximum possible key length
To find maximum key length allowed by an encryption algorithm you can use Cipher.getMaxAllowedKeyLength() method. For example, for AES algorithm you can do -
int maxKeyLength = Cipher.getMaxAllowedKeyLength("AES");
Related Links
- Oracle JCE documentation
- How to avoid installing “Unlimited Strength” JCE policy files when deploying an application?
- Java Security: Illegal key size or default parameters?