Java.security.invalidkeyexception: Illegal Key Size
Solution 1:
On a default desktop JVM installation (using the JRE or JDK from Sun/Oracle), AES is limited to 128-bit key size. This is a remnant of import/export laws on cryptographic software. To unlock the larger AES key sizes, you need to download and apply the "JCE Unlimited Strength Jurisdiction Policy Files" (see at the bottom of this page).
The key size restriction is enforced by the code within the Cipher class. Changing cryptographic providers (e.g. to one of the Bouncy Castle or IAIK providers) won't let you circumvent this restriction.
On an unrelated note, you do not want to use the raw getBytes() method on a String, because the result depends on the current locale (not everyone uses UTF-8 or even ASCII-compatible encodings). If you do want to represent your key as a literal string, at least use an explicit encoding, such as: CHUNK_ENCRYPTION_KEY.getBytes("UTF-8")
Solution 2:
It's not stated clearly in README that "JCE Unlimited Strength Jurisdiction Policy Files" should be copied to jre inside your JDK, otherwise it would not work. Path for files should be: /path/to/jdk1.7.0_xx/jre/lib/security
Solution 3:
Maybe your supplied KEY and Initialization Vector don't have 32 bytes, respectively 16 bytes length. You can also try to use the constructors that don't take the parameters the offset and length of the keys:
SecretKeySpeckeySpec=newSecretKeySpec(keyBytes, "AES");
IvParameterSpecivSpec=newIvParameterSpec(iv);
Post a Comment for "Java.security.invalidkeyexception: Illegal Key Size"