-
Bug
-
Resolution: Not an Issue
-
P3
-
None
-
8u121
1. Yes issue is Not present when we are using JDK 1.8.0.112 is only present
in jdk 1.8.0.121 as EC keys less than 256 are not supported anymore.
2. Using -Dcom.sun.net.ssl.enableECC=false and restart the WebLogic server
problem does not exist due the fact that ECC is disabled and Ciphers with EC
are not used.
But this is not solution but only workaround. Due to security reason we do
not like disable ECC and use Ciphers without EC. So we would like to find way
to still use Ciphers with EC with keys from 256bits. So we need to find way
to send list of supported Curves ID in Client Hello message to make
successful Handshake between our Weblogic (on jdk1.8.0.121) and LDAP.
in jdk 1.8.0.121 as EC keys less than 256 are not supported anymore.
2. Using -Dcom.sun.net.ssl.enableECC=false and restart the WebLogic server
problem does not exist due the fact that ECC is disabled and Ciphers with EC
are not used.
But this is not solution but only workaround. Due to security reason we do
not like disable ECC and use Ciphers without EC. So we would like to find way
to still use Ciphers with EC with keys from 256bits. So we need to find way
to send list of supported Curves ID in Client Hello message to make
successful Handshake between our Weblogic (on jdk1.8.0.121) and LDAP.
- relates to
-
JDK-8148516 Increase the minimum strength of EC keys
- Closed