Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8275077

Release Note: Updated the Default Enabled Cipher Suites Preference

    XMLWordPrintable

Details

    Description

      The default priority order of the cipher suites for TLS 1.0 to TLS 1.3 has been adjusted.

      For TLS 1.3, TLS_AES_256_GCM_SHA384 is now preferred over TLS_AES_128_GCM_SHA256.

      For TLS 1.0 to TLS 1.2, some of the intermediate suites have been lowered in priority as follows:

      - Cipher suites that do not preserve forward secrecy have been moved lower in priority than those that do support forward secrecy
      - Cipher suites that use SHA-1 have been moved lower in priority

      Attachments

        Issue Links

          backport of

          Sub-task - The sub-task of the issue JDK-8219551 Release Note: Updated the Default Enabled Cipher Suites Preference

          • P3 - Major loss of function.
          • Closed

          Activity

            People

              coffeys Sean Coffey
              xuelei Xuelei Fan
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: