Loading...

XML

Word

Printable

Type: Enhancement
Resolution: Unresolved
Priority: P3
Fix Version/s: None
Affects Version/s: None
Component/s: security-libs
Labels:
- security-disabled-algs-rfe

Subcomponent:
java.security
Understanding:
Fix Understood

Create a new security property (ex: jdk.crypto.disabledAlgorithms) that restricts crypto algorithms at the JCE layer.

For example, the following setting:

jdk.crypto.disabledAlgorithms=MessageDigest.MD2

would result in a NoSuchAlgorithmException if code called MessageDigest.getInstance("MD2"), even if a configured provider supported MD2. It would also apply to the getInstance methods that have a provider argument.

relates to

JDK-8361964 Remove outdated algorithms from requirements and add PBES2 algorithms

In Progress

JDK-8315487 Security Providers Filter

In Progress

JDK-8254711 Add java.security.Provider.getService JFR Event

Resolved

links to

Review(master) openjdk/jdk/26377

Assignee:: Valerie Peng

Reporter:: Sean Mullan

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2020-05-04 05:26

Updated:: 2 days ago 18:51

Details

Description

Attachments

Issue Links

Activity

People

Dates