-
Bug
-
Resolution: Fixed
-
P3
-
None
In our JSSE Reference Guide, we need to add a section to talk about the new jdk.tls.disabledAlgorithms Security property, and how enabled ciphersuites are affected by this.
The following can be used as part of the addition.
Disabled:
=========
If a ciphersuite contains any components (e.g. RC4) on the disabled list (i.e. RC4 jdk.tls.disabledAlgorithms), that ciphersuite will NOT be considered for a connection handshake.
Enabled:
========
A list of specific ciphersuites that will be considered for a connection (unless any component of that ciphersuite is also on the disabled list as per above.)
Not Enabled:
============
A list of ciphersuites that will NOT be considered for a connection.
The following can be used as part of the addition.
Disabled:
=========
If a ciphersuite contains any components (e.g. RC4) on the disabled list (i.e. RC4 jdk.tls.disabledAlgorithms), that ciphersuite will NOT be considered for a connection handshake.
Enabled:
========
A list of specific ciphersuites that will be considered for a connection (unless any component of that ciphersuite is also on the disabled list as per above.)
Not Enabled:
============
A list of ciphersuites that will NOT be considered for a connection.