Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8210755

Define standard names for EC curves and TLS signature schemes

XMLWordPrintable

    • Icon: Enhancement Enhancement
    • Resolution: Fixed
    • Icon: P3 P3
    • 14
    • None
    • security-libs

      In the SunJSSE provider, the jdk.tls.namedGroups can be used to customize the supported groups. But there are no standard names defined for them. They can also be used in the ECGenParameterSpec API. We should define these named groups in the Standard Names Specification, or document the link to IANA page if the IANA names are used.

      Also we are extending the scope of the jdk.tls.disabledAlgorithms security property (see JDK-8226374) to allow you to restrict signature schemes, as specified in the TLS RFCs. We should add a section to the standard names specification listing the standard scheme names.

            mullan Sean Mullan
            xuelei Xuelei Fan
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated:
              Resolved: