-
Enhancement
-
Resolution: Fixed
-
P3
-
None
-
b09
In the SunJSSE provider, the jdk.tls.namedGroups can be used to customize the supported groups. But there are no standard names defined for them. They can also be used in the ECGenParameterSpec API. We should define these named groups in the Standard Names Specification, or document the link to IANA page if the IANA names are used.
Also we are extending the scope of the jdk.tls.disabledAlgorithms security property (seeJDK-8226374) to allow you to restrict signature schemes, as specified in the TLS RFCs. We should add a section to the standard names specification listing the standard scheme names.
Also we are extending the scope of the jdk.tls.disabledAlgorithms security property (see
- csr for
-
JDK-8228752 Define standard names for EC curves and TLS signature schemes
- Closed
- is blocked by
-
JDK-8226307 Curve names should be case-insensitive
- Resolved
- relates to
-
JDK-8208156 Each JCE provider should document the EC curves that they support
- Resolved
-
JDK-8226374 Restrict TLS signature schemes and named groups
- Resolved
-
JDK-8213400 Support choosing group name in keytool keypair generation
- Resolved
-
JDK-8080704 Support the retrieval of standard names for EC parameters
- Closed
(1 relates to)