1. Home
  2. /
  3. Download
  4. /
  5. Download Bouncy Castle Java

Download Bouncy Castle for Java

Welcome to the download page for the general edition of Bouncy Castle Java. In addition to the available access options, including GitHub, Maven Central, and direct download, you will find searchable release notes and links to API and other documentation.

 

Bouncy Castle Java
hero-sub-2

GitHub

Access the Bouncy Castle APIs Java package on GitHub, where you can also report issues, join discussions, and contribute to the software.

Download from GitHub

Documentation 

Explore the Bouncy Castle for Java documentation online for concise guidance and examples.

View the Documentation

Join the discussion

You can ask questions and learn from specialists in the Bouncy Castle Java forum on GitHub Discussions. We highly appreciate and value your input.

Go to GitHub Discussions

Report an issue

If you encounter any issues that require attention, feel free to report them in our GitHub repository. 

Go to GitHub to Report an issue

Release notes

Find out detailed information about the latest release and search in older release notes.

Go to Release notes

Beta releases

The current working betas, when available, for the next release for JDK 1.8 and later can be found here. If you need a beta to be made available for another version of Java please ask by emailing: feedback-crypto@bouncycastle.org.

Download the latest Beta release

Donate to support the Bouncy Castle APIs

Supporting Bouncy Castle is now a substantial effort, the Java API is now over 300,000 lines, the C# one well past 140,000.

Donate

Bouncy Castle Java Downloads

The latest Bouncy Castle Java release is 1.84.

Except where otherwise stated, this software is distributed under the regular Bouncy Castle license. For full details of other licenses involved, see Third party licenses

Distribution Files (JAR and ZIP format)

Compiled classes, sources and JavaDoc for Java 1.8 and later.

Provider bcprov-jdk18on-1.84.jar bcprov-jdk18on-1.84-sources.jar bcprov-jdk18on-1.84-javadoc.jar
Provider (Debug Version) bcprov-debug-jdk18on-1.84.jar    
ASN.1 Utility Classes bcutil-jdk18on-1.84.jar bcutil-jdk18on-1.84-sources.jar bcutil-jdk18on-1.84-javadoc.jar
PKIX/CMS/EAC/PKCS/OCSP/TSP/OPENSSL bcpkix-jdk18on-1.84.jar bcpkix-jdk18on-1.84-sources.jar bcpkix-jdk18on-1.84-javadoc.jar
SMIME bcmail-jdk18on-1.84.jar bcmail-jdk18on-1.84-sources.jar bcmail-jdk18on-1.84-javadoc.jar
Jakarta SMIME bcjmail-jdk18on-1.84.jar bcjmail-jdk18on-1.84-sources.jar bcjmail-jdk18on-1.84-javadoc.jar
OpenPGP/BCPG bcpg-jdk18on-1.84.jar bcpg-jdk18on-1.84-sources.jar bcpg-jdk18on-1.84-javadoc.jar
DTLS/TLS API/JSSE Provider bctls-jdk18on-1.84.jar bctls-jdk18on-1.84-sources.jar bctls-jdk18on-1.84-javadoc.jar
MLS API bcmls-jdk18on-1.84.jar bcmls-jdk18on-1.84-sources.jar bcmls-jdk18on-1.84-javadoc.jar
Test Classes bctest-jdk18on-1.84.jar    
Core Crypto   lcrypto-jdk18on-1.84.tar.gz lcrypto-jdk18on-1.84.zip 

Note: the compiled jar files in this distribution are all multi-release, if you need a version specific to Java 1.8, we recommend using the JDK 1.5 to JDK 1.8 release.

Compiled classes, sources and JavaDoc for Java 1.5 to Java 1.8.

Provider bcprov-jdk15to18-1.84.jar bcprov-jdk15to18-1.84-sources.jar bcprov-jdk15to18-1.84-javadoc.jar
Provider (Debug Version) bcprov-debug-jdk15to18-1.84.jar    
ASN.1 Utility Classes bcutil-jdk15to18-1.84.jar bcutil-jdk15to18-1.84-sources.jar bcutil-jdk15to18-1.84-javadoc.jar
PKIX/CMS/EAC/PKCS/OCSP/TSP/OPENSSL bcpkix-jdk15to18-1.84.jar bcpkix-jdk15to18-1.84-sources.jar bcpkix-jdk15to18-1.84-javadoc.jar
SMIME bcmail-jdk15to18-1.84.jar bcmail-jdk15to18-1.84-sources.jar bcmail-jdk15to18-1.84-javadoc.jar
Jakarta SMIME bcjmail-jdk15to18-1.84.jar bcjmail-jdk15to18-1.84-sources.jar bcjmail-jdk15to18-1.84-javadoc.jar
OpenPGP/BCPG bcpg-jdk15to18-1.84.jar bcpg-jdk15to18-1.84-sources.jar bcpg-jdk15to18-1.84-javadoc.jar
DTLS/TLS API/JSSE Provider bctls-jdk15to18-1.84.jar bctls-jdk15to18-1.84-sources.jar bctls-jdk15to18-1.84-javadoc.jar
Test Classes bctest-jdk15to18-1.84.jar    
Core Crypto   lcrypto-jdk15to18-1.84.tar.gz lcrypto-jdk15to18-1.84.zip 

Compiled classes, sources and JavaDoc for Java 1.4.

Provider bcprov-jdk14-1.84.jar bcprov-jdk14-1.84-sources.jar bcprov-jdk14-1.84-javadoc.jar
Provider (Debug Version) bcprov-debug-jdk14-1.84.jar    
ASN.1 Utility Classes bcutil-jdk14-1.84.jar bcutil-jdk15to18-1.84-sources.jar bcutil-jdk15to18-1.84-javadoc.jar
PKIX/CMS/EAC/PKCS/OCSP/TSP/OPENSSL bcpkix-jdk14-1.84.jar bcpkix-jdk14-1.84-sources.jar bcpkix-jdk14-1.84-javadoc.jar
SMIME bcmail-jdk14-1.84.jar bcmail-jdk14-1.84-sources.jar bcmail-jdk14-1.84-javadoc.jar
OpenPGP/BCPG bcpg-jdk14-1.84.jar bcpg-jdk14-1.84-sources.jar bcpg-jdk14-1.84-javadoc.jar
DTLS/TLS API/JSSE Provider bctls-jdk14-1.84.jar bctls-jdk14-1.84-sources.jar bctls-jdk14-1.84-javadoc.jar
Test Classes bctest-jdk14-1.84.jar    
Core Crypto   lcrypto-jdk14-1.84.tar.gz lcrypto-jdk14-1.84.zip 

Compiled classes, sources and JavaDoc for Java 1.3.

Clean Room JCE jce-jdk13-1.79.jar jce-jdk13-1.79.tar.gz jce-jdk13-1.79.zip
Provider bcprov-jdk13-1.79.jar bcprov-jdk13-1.79.tar.gz bcprov-jdk13-1.79.zip
ASN.1 Utility Classes bcutil-jdk13-1.79.jar bcutil-jdk13-1.79.tar.gz bcutil-jdk13-1.79.zip
PKIX/CMS/EAC/PKCS/OCSP/TSP/OPENSSL bcpkix-jdk13-1.79.jar bcpkix-jdk13-1.79.tar.gz bcpkix-jdk13-1.79.zip
SMIME bcmail-jdk13-1.79.jar bcmail-jdk13-1.79.tar.gz bcmail-jdk13-1.79.zip
OpenPGP/BCPG bcpg-jdk13-1.79.jar bcpg-jdk13-1.79.tar.gz bcpg-jdk13-1.79.zip
Test Classes bctest-jdk13-1.79.jar    
Core Crypto   lcrypto-jdk13-1.79.tar.gz lcrypto-jdk13-1.79.zip

Compiled classes, sources and JavaDoc for Java 1.2.

Clean Room JCE jce-jdk12-1.79.jar jce-jdk12-1.79.tar.gz jce-jdk12-1.79.zip
Provider bcprov-jdk12-1.79.jar    
PKIX/CMS/EAC/PKCS/OCSP/TSP/OPENSSL bcpkix-jdk12-1.79.jar bcpkix-jdk12-1.79.tar.gz bcpkix-jdk12-1.79.zip
OpenPGP/BCPG bcpg-jdk12-1.79.jar bcpg-jdk12-1.79.tar.gz bcpg-jdk12-1.79.zip
Test Classes bctest-jdk12-1.79.jar    
Core Crypto   lcrypto-jdk12-1.79.tar.gz lcrypto-jdk12-1.79.zip 

Compiled classes, sources and JavaDoc for Java 1.1.

Clean Room JCE jce-jdk11-1.79.tar.gz jce-jdk11-1.79.zip
PKIX/CMS/EAC/PKCS/OCSP/TSP/OPENSSL bcpkix-jdk11-1.79.tar.gz bcpkix-jdk11-1.79.zip
OpenPGP/BCPG bcpg-jdk11-1.79.tar.gz bcpg-jdk11-1.79.zip
Core Crypto   lcrypto-jdk11-1.79.tar.gz lcrypto-jdk11-1.79.zip 
Checksums

To confirm the integrity of the distributions, checksums are available:

Download Checksums

Maven Central Signing Key

If you are trying to confirm the signatures for artifacts from Maven Central, you can use the public key linked below.

Download bc_maven_public_key.asc

Release notes

Find out detailed information about the latest Bouncy Castle Java releases and search in older release notes.  

Latest release Release 1.84 Release 1.83 Release 1.82 Release 1.81 Release 1.80 Release 1.79 Release 1.78.1 Release 1.78 Release 1.77 Release 1.76 Release 1.75 Release 1.74 Release 1.73 Release 1.72.2 Release 1.72.1 Release 1.72 Release 1.71 Release 1.70 Release 1.69 Release 1.68 Release 1.67 Release 1.66 Release 1.65 Release 1.64 Release 1.63 Release 1.62 Release 1.61 Release 1.60 Release 1.59 Release 1.58 Release 1.57 Release 1.56 Release 1.55 Release 1.54 Release 1.53 Release 1.52 Release 1.51 Release 1.50 Release 1.49 Release 1.48 Release 1.47 Release 1.46 Release 1.45 Release 1.44 Release 1.43 Release 1.42 Release 1.41 Release 1.40 Release 1.39 Release 1.38 Release 1.37 Release 1.36 Release 1.35 Release 1.34 Release 1.33 Release 1.32 Release 1.31 Release 1.30 Release 1.29 Release 1.28 Release 1.27 Release 1.26 Release 1.25 Release 1.24 Release 1.23 Release 1.22 Release 1.21 Release 1.20 Release 1.19 Release 1.18 Release 1.17 Release 1.16 Release 1.15 Release 1.14 Release 1.13 Release 1.12 Release 1.11 Release 1.10 Release 1.09 Release 1.08 Release 1.07 Release 1.06 Release 1.05 Release 1.04 Release 1.03 Release 1.02 Release 1.01 Release 1.00
Release 1.84
14 April, 2026
Additional Features and Functionality In line with JVM changes, KEM support has been backported to Java 17. BCJSSE: Configurable (client) early key_share g...

Additional Features and Functionality

  • In line with JVM changes, KEM support has been backported to Java 17.
  • BCJSSE: Configurable (client) early key_share groups via BCSSLParameters.earlyKeyShares or “org.bouncycastle.jsse.client.earlyKeyShares” system property.
  • BCJSSE: Support for curveSM2MLKEM768 hybrid NamedGroup in TLS 1.3 per draft-yang-tls-hybrid-sm2-mlkem-03.
  • BCJSSE: Log when default cipher suites are disabled.
  • BCJSSE: Experimental support for ShangMi crypto in TLS 1.3 per RFC 8998 (not enabled by default).
  • CMS: Added CMSAuthEnvelopedDataStreamGenerator.open taking an explicit content type.
  • HKDF: Provider support for HKDFParameterSpec.Expand.
  • Added initial support for RFC 9380 (Hashing to Elliptic Curves); see org.bouncycastle.crypto.hash2curve .
  • PKCS12: Added default max iteration count of 5,000,000 (configurable via “org.bouncycastle.pkcs12.max_it_count” property).
  • TLS: Use javax.crypto.KEM API (when available) to access ML-KEM implementation (incl. hybrids).
  • A new KeyStore, PKCS12-PBMAC1, has been added which defaults to using PBMAC1 and supports RFC 9879.
  • A new property “org.bouncycastle.asn1.max_cons_depth” has been added to allow setting of the maximum nesting for SETs/SEQUENCESs in ASN.1. Default is 32.
  • A new property “org.bouncycastle.asn1.max_limit” has been added to allow setting of the stream size of ASN.1 encodings. The value can be either in bytes, or appended with k (1 kilobyte blocks), m (1 megabyte blocks), or g (1 gigabyte blocks).
  • Added NTRU+ support to the lightweight PQC API and the BCPQC provider.
  • Added SM4 key wrap/unwrap mode, SM2 key exchange, and logging to SM2Signer.
  • OpenPGP: Added encryption‑key filtering by purpose, a new OpenPGPKey constructor, KeyPassphraseProvider‑based passphrase change, wildcard (anonymous) recipient handling, and Web‑of‑Trust methods for third‑party signature chains and delegations.
  • CMSSignedDataStreamGenerator can now support the generation of DER/DL encoded SignedData objects (note memory restrictions still apply).
  • It is now possible to add extra digest alorithm IDs to CMSSignedDataStreamGenerator when required.

Security Fixes

  • CVE-2025-14813 - GOSTCTR implementation unable to process more than 255 blocks correctly.
  • CVE-2026-0636 - LDAP Injection Vulnerability in LDAPStoreHelper.java.
  • CVE-2026-3505 - Unbounded PGP AEAD chunk size leads to pre-auth resource exhaustion.
  • CVE-2026-5588 - PKIX draft CompositeVerifier accepts empty signature sequence as valid.
  • CVE-2026-5598 - Non-constant time comparisons risk private key leakage in FrodoKEM.

Defects Fixed

  • Random numbers being generated for DSTU4145 signature calculations were 1 bit shorter than they could be. The code has been corrected to allow the generated numbers to occupy the full numeric range available.
  • HKDF implementation has been corrected to use multiple IKMs if available.
  • CompositePublic/PrivateKey builders had an issue identifying brainpool and EdDSA curves from the algorithm names due to an error in the OID mapping table. This has been fixed.
  • S/MIME: Fix AuthEnveloped support for AES192/GCM and AES256/GCM.
  • CMS: Use implicit tag for AuthEnvelopedData.authEncryptedContentInfo.encryptedContent.
  • Fixed Strings.split to handle delimiters at position 0.
  • Fixed FrodoKEM error sampling to be constant-time.
  • Fixed PKIXNameConstraintValidator to treat a DNS name as intersecting itself.
  • Fixed PKCS12 key stores not calling getInstance with the original provider (which was forcing provider registration).
  • A resource leak due to the SMIMESigned constructor leaving background threads hanging on MessagingException has been fixed.
  • OpenPGP: Fixed an issue where a custom signature creation time was ignored when generating message signatures.
  • OpenPGP: Fixed SKESK encoding for direct-S2K-encrypted messages.

Additional Notes

  • DSA was recently deprecated by NIST and several users have requested that we move to an RSA signing certificate for provider signing instead of our current DSA one. We are grateful to report that Oracle have been very supportive of this and issued us a second RSA certificate based on a new RSA key for signing providers. Providers signed with the previous DSA key will continue to work as before.
  • This will be the last release which will recognise Dilithium and SphincsPlus in the BC provider, the Kyber wrapper (which is just ML-KEM) will also be removed. The algorithms won't be deleted in 1.85, but will only be accessible via the low-level APIs and deleted in a later release.
Close