Spectrum was enhanced in release 9.4 to use stronger encryption methods such as AES256 and SHA256. When trying to launch the console after an upgrade an end user may receive a popup as follows:
In order to launch the console an end user is required to download the JCE Unlimited Strength Jurisdiction file and manually replace the current policy in their JRE directory. The reason this step is necessary is due to import control restrictions of various countries.
Since Spectrum 9.4 now uses AES256 and SHA256 the JCE Unlimited Strength files are required on both sides to launch the console. The Internal version of JRE used by OneClick and the SpectroSERVER already ship with this file in place so only the client machines running the Console are required to be updated.
In order to unlock JRE's ability to use higher encryption methods the JCE policy file can be downloaded from
- OneClick Web Page
- Download from Oracle
The download from Oracle also contains a ReadMe.txt explaining more about this.
Once down loaded rename the current local_policy.jar file and replace it with the downloaded JCE Unlimited Strength version.
32 bit JRE
C:\Program Files (X86)\Java\jre7\lib\security\local_policy.jar
64 bit JRE
Rename the file local_policy.jar to local_policy.jar.orig, copy in the Unlimited Strength file, re-launch the OneClick console.
Additional Information in regards to encryption algorithms used by Spectrum can be found in the Security Policy Statement documentation included with Spectrum 9.4 https://support.ca.com/cadocs/1/m003642e.pdf