Java Unlimited Strength Crypto Policy for Java 9 or 1.8.0_151
Starting with Java 1.8.0_151 and 1.8.0_152 there is a new somewhat easier way to enable the unlimited strength jurisdiction policy for the JVM. Without enabling this you cannot use AES-256 for example.
First download the JRE, I like to use the
server-jre for servers. When you extract the server-jre look for the file
java.security in the
jre/lib/security folder. For example for Java 1.8.0_152 the file structure looks like this:
/jdk1.8.0_152 |- /jre |- /lib |- /security |- java.security
java.security with a text editor and look for the line that defines the java security property
crypto.policy it can have two values
unlimited - the default is
By default you should find a commented out line:
You can enable unlimited by uncommenting that line, remove the
Now restart your java applications that point to the JVM and you should be all set.
Like this? Follow me ↯Tweet Follow @pfreitag
Java Unlimited Strength Crypto Policy for Java 9 or 1.8.0_151 was first published on October 19, 2017.
If you like reading about java, jre, security, or crypto then you might also like:
- Java 9 Security Enhancements
- Tomcat Java 10 on Windows CreateJavaVM Failed
- Enabling Unlimited Strength Cryptography in ColdFusion
- HashDOS and ColdFusion
- Java 1.6.0_24 Released Patches DOS Vulnerability
- Important Java Security Patch Released
- Using AntiSamy with ColdFusion
- Signing Jar Files (converting pvk to p12)