You can configure stronger encryption by using the BCC package.
The Bouncy Castle Crypto (BCC) package is included in your Oracle Endeca Guided Search installation. This package is a Java implementation of cryptographic algorithms and provides stronger encryption than the native JCE implementation. For example, RSA authentication and key exchange is supported for up to 4096-bit keys.
The package also contains the BCC provider, which is a JCE-compliant provider that is a wrapper built on top of the BCC light-weight API.
Before you integrate the BCC package, make sure that you are running Java 2 SDK version 1.4.x or later. Earlier versions of the Java 2 SDK do not support the stronger cryptographic capabilities of the BCC package.
To integrate the BCC package:
security.provider.n=org.bouncycastle.jce.provider.BouncyCastleProviderIt is recommended that you not put the Bouncy Castle provider as the first name in the preference order. It is up to you to determine the actual order of the providers, but the following example is one recommended ordering.
# List of providers and their preference orders security.provider.1=sun.security.provider.Sun security.provider.2=com.sun.crypto.provider.SunJCE security.provider.3=sun.security.jgss.SunProvider security.provider.4=org.bouncycastle.jce.provider.BouncyCastleProvider security.provider.5=com.sun.net.ssl.internal.ssl.Provider