Add feature to disable weak TLS protocol versions

XMLWordPrintable

    • Type: Enhancement
    • Resolution: Duplicate
    • Priority: P3
    • 9
    • Affects Version/s: None
    • Component/s: security-libs
    • None

      RFC 6176 is proposed to prohibit SSL version 2.0. SSL 3.0 and TLS 1.0 are also facing a few challenges. Customers may want to disable SSLV2Hello, SSLv3 and TLSv1 for a safer TLS communication environment.

      It is may be doable by extending algorithm constraints of JSSE.

            Assignee:
            Xuelei Fan
            Reporter:
            Xuelei Fan
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: