Menu

CipherCore For Java Client/Server Apps / News: Recent posts

0.1.1 Much Friendlier

Version 0.1.1 now has BouncyCastle JCE rolled in with the CipherCore.jar. That means all you need to do to start the server is extract the tarball and run "java -classpath lib/CipherCore.jar com.ciphercore.Server."
Also heavily updated the documentation at http://ciphercore.com/ciphercore/

Posted by Robert Bushman 2001-04-07

WooHoo First Minor Release!

0.1.0 is the first version that is (supposed to be) fully secure. Currently features SHA-1 digest authentication, 1024 bit Diffie Hellman key exchange, Blowfish ciphers, and passwords sent encrypted.

Posted by Robert Bushman 2001-04-02

Man In The Middle Fixed (0.0.9)

As of 0.0.9, the Man In The Middle vulnerability has been eliminated. The change has rendered the original "Hello World" uncompilable. A new version will be released ASAP.

Posted by Robert Bushman 2001-03-31

Quick Update

Just some quick news since I'm in the middle of a major revision.
- Now uses Blowfish instead of DES. Can you say, "military grade"?
- Next release will have the man-in-the-middle problem solved. Roughly 40% complete.

Posted by Robert Bushman 2001-03-30

Insecure Option No Longer Supported

The --insecure command line option has been removed. It wasn't any more secure when not using the switch, but took much longer to light up. As of 0.0.7 the default will be to use the included Prime and Generator.

Posted by Robert Bushman 2001-03-29

0.0.6 Uses Bouncy Castle

As of the just released 0.0.6, Bouncy Castle is the default JCE.

Posted by Robert Bushman 2001-03-28

Not Cryptix, BouncyCastle

Cryptix will not be used as the default JCE implementation. I am in the process of porting to BouncyCastle. http://bouncycastle.org/

Posted by Robert Bushman 2001-03-28

CipherChat 0.0.1 Available

CipherChat 0.0.1 is available for download from http://ciphercore.com/ciphermod/cipherchat.html . It is intended primarily as a demo of the real world utility of CipherCore.

Posted by Robert Bushman 2001-03-26

CipherChat Under Development

The first major demo of the capabilities of CipherCore is approaching alpha release. It will be a very simplistic chat system, and will demo a real world deployment of CipherCore. Should be released before Monday.

Posted by Robert Bushman 2001-03-24

DMCA Mod Available

The first alpha of the DMCA mod for CipherCore is available from http://ciphercore.com/ciphermod/ . It mixes copyrighted data into the streams before encryption, so that it is a violation of the DMCA to decrypt the streams.

Posted by Robert Bushman 2001-03-24

Cryptix Documentation Soon

In the near future I will be changing the default JCE from the Sun JCE (which is license encumbered) to Cryptix. I also hope that Cryptix will be a bit easier to install.

Posted by Robert Bushman 2001-03-24

ALERT: Man In The Middle Risk

Since the current implementation has no way of loading the Diffie Hellman parameters from disk, and instead generates a new key every time, CipherCore is currently vulnerable to man-in-the-middle attack.

Posted by Robert Bushman 2001-03-24