Configuration of the JDK environment & Installation of the Bouncing Castle JCE Security Provider

Step 1)  Go to https://www.oracle.com/java/technologies/javase-jdk16-downloads.html and download the most recent version of JDK (e.g., jdk-16 on Windows x64). After installing the JDK, set the system path to ensure the JDK is your default JDK. Also add the current folder (that is, .) to the classpath.

NOTE: Check out the JDK installation manual to learn how to configure environment variables such as path and classpath. You may also check out Step 4 below for similar instructions.

Step 2) The JDK you downloaded and installed is of the default strength, that is, Strong but not Unlimited. To increase your JDK’s strength to Unlimited, do the following:

(a) Download the right version of Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files from https://www.oracle.com/java/technologies/javase-jce8-downloads.html.

(b) Suppose the file you downloaded is called jce_policy-8.zip. Unzip the file into a temporary folder (e.g., c:\jce\ ). From the folder, copy the two .jar files (local_policy.jar and US_export_policy.jar) into the jre\lib\security folder of your JDK installation. For example, if your JDK is installed as C:\Program Files\Java\jdk1.8.0_301, copy the two files into the folder C:\Program Files\Java\jdk1.8.0_301\jre\lib\security. NOTE: The folder may already have two files with the same names. Just answer ‘YesToAll’ when prompted to overwrite the existing files.

      CAUTION: Use the ‘java –version’ command to check whether you’re running the java program from your JDK’s bin folder or from the bin folder under your JRE (Java Runtime Environment) folder. As shown in the diagram below, the latter is true on this particular system. In the latter case, make sure you copy the two .jar files (local_policy.jar and US_export_policy.jar) into the lib\security folder of your JRE folder.

(c) It may be necessary to restart your computer before the newly installed policy files would start working.

Note: The installation procedure is described in details in the README.txt file.

Step 3)  Download the right version of Bouncing Castle JCE provider for the JDK in your system from http://www.bouncycastle.org/latest_releases.html, and save it to the local disk. For example, if your JDK is v16, then download the provider bcprov-jdk15on-169.jar.

Step 4)  Set the classpath environment variable to include the downloaded file in the step above.  To set the classpath, do the following:

a)          In the Search Windows box, enter “environment variables”.

c)      Click the Edit environment variables app (as shown in the figure above).

d)      In the User Variables or the System Variables section, click on the New… button.

e)      Set the Variable Name to classpath

f)       Set the Variable Value to the location of the downloaded file. For example, if the downloaded file was stored at m:\security\bcprov-jdk15-131.jar, then the value is set to %classpath%; .; m:\security\bcprov-jdk15-131.jar  (or the name of the Bouncing Castle JCE provider you downloaded in step 3). Note: The folder ‘.’ refers to the current folder.

As a temporary method, you may type, in a DOS window, the following command: ‘set classpath=%classpath%; .;m:\security\bcprov-jdk15-131.jar’.

Note: The set command only sets the classpath once for that particular command window.

 

Step 5)  In each of the .java source files, include this line of code:
     Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());
anywhere before the line
     Cipher cipher = Cipher.getInstance("RSA/ECB/PKCS1Padding");

      For example, place it as the first statement in the main( ) method.

Step 6)  Compile and run the programs.

B.     Common Errors and Possible Solutions: