March 24th, 2012
· This version includes further cleanup and the OpenPGP API is now usable via operator interfaces similar to what were added for CMS in 1.46.
· The number of lightweight operator implementations has been expanded and certificate generation, OpenPGP, CMS, CRMF, CMP, PKCS, and OCSP are now supported across all JDK releases including the J2ME (except compression).
· Support has been added for EAC (Extended Access Control) and a lightweight version of NTRU.
· Classes involved in CRL manipulation have been rewritten so as to support extremely large CRLs.
· A number of bugs have also been fixed.
February 24th, 2011
· This version adds support for client side SSL to the TLS API, and support for CMP (RFC 4210), CRMF (RFC 4211), and CMS TimeStampedData (RFC 5544).
· The CMS and TSP APIs have been rewritten and new APIs have been added for certificate generation and OCSP, which allow the use of interface based operators to provide cryptographic services.
· This means it is now possible to use the lightweight API, or any another small factor API, in addition to the JCE/JCA to provide cryptographic operations required to support all these standards.
April 19th, 2009
· This is a bug fix release. Multiple countersignatures in CMS/SMIME messages are now correctly collected, hashCode() for X509Name is now fully consistent with it's equals() method, and the HC-128, HC-256 implementations have had a sign expansion bug fixed and are now fully compliant with the latest Ecrypt test vectors. Note: if you are looking at using HC-128 or HC-256 you need to update to this release.
March 16th, 2009
· This release adds Grain v1 and Grain128, as well as basic support for AuthenticatedData to the CMS API.
· Further work has been done to improve the BC APIs working with Provider objects rather than provider names, and JDK 1.5 and 1.6 jars are now pre-packaged with pack200.
· A number of other bugfixes and enhancements have also been made.
October 3rd, 2008
· This release adds a faster and smaller version of Camellia.
· The ECDSA implementation is now compliant with X9.62-2005, OpenPGP, S/MIME, and CMS now support passing of providers as well as provider names, S/MIME handles a wider range of special cases for signature verification, and a range of other improvements have been made to the J2ME, CMS, S/MIME, and OpenPGP APIs.
· A regression from 1.38 for handling PKIXCertPathCheckers on intermediate certificates is fixed.