Upcoming Release: Oracle’s Zero Trust Packet Routing Platform Aims to Set a New Standard in Data and Network Security
Oracle Open-Sources Jipher for Enhanced Java Cryptography
Oracle has announced the open-sourcing of Jipher, a Java Cryptography Architecture (JCA) provider specifically designed to enhance both security and performance in cloud environments. Initially developed for Oracle’s own cloud platform, Jipher is now being released to the public as an open-source offering. The announcement, made on November 7, highlights Oracle’s commitment to contributing to the Java ecosystem and improving cryptographic performance for Java applications. With Jipher, Oracle aims to provide a robust and efficient cryptographic solution that meets stringent security standards.
Tailored for FIPS 140 Compliance and High Performance
Jipher was built to meet the requirements of environments that need to comply with Federal Information Processing Standards (FIPS) 140, a U.S. government standard for cryptographic modules that ensures data security and integrity. Oracle claims that its Oracle Cloud Infrastructure (OCI) has experienced substantial performance improvements with the adoption of Jipher. By optimizing cryptographic operations in accordance with FIPS standards, Jipher ensures that applications running in OCI can achieve both high security and efficient performance. The open-source release of Jipher will be made available through OpenJDK, further supporting the development of Java applications, particularly those leveraging Project Panama.
Integration with Project Panama and OpenJDK
Jipher’s open-source availability through the OpenJDK is particularly noteworthy for developers working on Project Panama, an initiative aimed at improving interoperability between the Java Virtual Machine (JVM) and native code. Project Panama simplifies the process of calling native libraries from Java, and Jipher will provide these Java applications with a high-performance cryptographic provider that is compliant with modern security standards. This integration can enhance the security capabilities of Java applications that require cryptographic functions while maintaining optimal performance.
FIPS-Compliant Algorithms and Competitive Performance
The Jipher provider is designed to support cryptographic algorithms that comply with FIPS standards, including the OpenSSL 3.0 FIPS module. Oracle emphasizes that Jipher provides competitive performance compared to other JDK providers, such as Bouncy Castle and default Java providers. The JCA’s provider architecture and APIs cover a wide range of cryptographic needs, including digital signatures, message digests, certificates and their validation, encryption techniques (symmetric, asymmetric, block, and stream ciphers), key generation and management, and secure random number generation. This comprehensive support ensures that Jipher can serve as a versatile cryptographic tool for Java developers.
Oracle’s Broader Initiatives in Network Security
In addition to open-sourcing Jipher, Oracle announced plans to release the Oracle Zero Trust Packet Routing Platform. This platform is part of an initiative to create a new open standard for data and network security, which is particularly crucial for organizations operating in distributed IT environments. The platform aims to strengthen data protection by adopting a zero-trust approach, which assumes that all network traffic is potentially hostile and requires strict verification for access. Oracle plans to collaborate with industry partners to develop this open standard, enhancing security frameworks across various sectors.
Supporting Cloud-Native Computing with New Contributions
As part of its broader commitment to open source and cloud-native computing, Oracle also revealed a significant contribution to the Cloud Native Computing Foundation (CNCF). Oracle will provide $3 million in credits annually for three years on Ampere Arm-based hardware to support CNCF projects on OCI. This contribution is aimed at advancing cloud-native computing efforts by combining cloud-native Ampere compute infrastructure with a range of open-source projects hosted by the CNCF. By supporting these initiatives, Oracle continues to bolster its position in the cloud ecosystem, driving innovation in open-source cloud-native services.