A new system property has been introduced that allows users to configure the default key size used by the JDK provider implementations of Key Pair Generator and Algorithm Parameter Generator.
This property is named "jdk.security.default Key Size" and the value of this property is a list of comma-separated entries.
The download and install steps are no longer necessary.
If an SVR4 based upgrade (without uninstalling the old packages) is being done on a JDK release earlier than 6u131, 7u121, 8u111, then you should set the new crypto.policy Security property in the java.security file.
Because the old JCE jurisdiction files are left in , they may not meet the latest security JAR signing standards, which were refreshed in 6u131, 7u121, 8u111, and later updates.
Each entry consists of a case-insensitive algorithm name and the corresponding default key size (in decimal) separated by ":". By default, this property will not have a value, and JDK providers will use their own default values.
Entries containing an unrecognized algorithm name will be ignored.
See the following links to release notes including bug fixes, installation information, required licenses, supported configurations, and documentation links contained in this page.