Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8259709 Disable SHA-1 XML Signatures
  3. JDK-8261364

Release Note: Disable SHA-1 XML Signatures

    XMLWordPrintable

Details

    • Sub-task
    • Status: Closed
    • P3
    • Resolution: Delivered
    • 17
    • 17
    • security-libs

    Description

      XML signatures that use SHA-1 based digest or signature algorithms have been disabled by default. SHA-1 is no longer a recommended algorithm for digital signatures. If necessary, and at their own risk, applications can workaround this policy by modifying the `jdk.xml.dsig.secureValidationPolicy` security property and re-enabling the SHA-1 algorithms.

      Attachments

        Activity

          People

            mullan Sean Mullan
            mullan Sean Mullan
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: