If possible, try to compare the key authorization your client is calculating for the same challenge token and key when you run on 1.7 vs. 1.8. In a similar case, the problem was due to the client not removing leading zeros from the [n parameter of the] RSA account key before calculating the thumbprint. Maybe there’s a change in JRE 1.8 causing something similar.