commons-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Duncan Jones <djo...@apache.org>
Subject [PROPOSAL] Create new sandbox component "Commons Crypto"
Date Wed, 18 Mar 2015 12:57:56 GMT
Hi everyone,

I would like to begin work on a new sandbox component, Commons Crypto,
that makes it easier for developers to use crypto from the standard
Java libraries. The component would have two goals: 1) To make it
harder for users to make typical crypto errors, 2) To make it easier
to perform common crypto tasks. Some select examples are below:

Typical errors to avoid:
 - Weak conversion of passwords to keys.
 - Specifying algorithms that rely on system defaults.
 - Bad conversions of ciphertext to strings.
 - Encryption/decryption of strings without charsets.

Common tasks that could be easier:
 - Specifying typical algorithms without figuring out "AES/CBC/PKCS5Padding".
 - Working with X.509 certificates
 - Generating keys (particularly using password derivation).

The scope of this library would be limited to the most commonly used
algorithms, key sizes, etc. The goal is to satisfy 80-90% of potential
use cases with a really well documented, compact library. Given that
crypto is confusing to many, documentation will be exceptionally
verbose.

Two existing open-source libraries might spring to mind when
considering this proposal: BouncyCastle [1] is a well-known crypto
library with a Java implementation. However, this has different goals,
namely to implement actual crypto algorithms. Commons Crypto, by
contrast, is focussed on working with existing JDK implementations.
JASYPT [2] is another library aimed at simplifying use of encryption,
yet in my mind it goes too far, focussing only on password-based
encryption, with limited control over how that's carried out.

If no-one objects, I'll begin work on this component, asking the Infra
team to create a new Git repository. Before committing any code, I'll
follow the instructions at [3] to ensure this project is compliant
with US Export Control Laws.

Comments, thoughts and objections very welcome.

Kind regards,

Duncan


[1] https://www.bouncycastle.org/java.html
[2] http://www.jasypt.org/
[3] http://www.apache.org/dev/crypto.html

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@commons.apache.org
For additional commands, e-mail: dev-help@commons.apache.org


Mime
View raw message