Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8030683

Add feature to disable weak TLS protocol versions

XMLWordPrintable

    • Icon: Enhancement Enhancement
    • Resolution: Duplicate
    • Icon: P3 P3
    • 9
    • None
    • security-libs
    • None

      RFC 6176 is proposed to prohibit SSL version 2.0. SSL 3.0 and TLS 1.0 are also facing a few challenges. Customers may want to disable SSLV2Hello, SSLv3 and TLSv1 for a safer TLS communication environment.

      It is may be doable by extending algorithm constraints of JSSE.

            xuelei Xuelei Fan
            xuelei Xuelei Fan
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: