Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8283795

Add TLSv1.3 and CNSA 1.0 algorithms to implementation requirements

XMLWordPrintable

      Periodically, we review the algorithm requirements [1] to see if new algorithms should be added or existing ones should be removed. We propose to add the following new requirements:

      - Add TLSv1.3 to the list of requirements. TLSv1.3 is the most secure protocol version and is in wide use. Add all cryptographic algorithms that are needed to implement the TLSv1.3 cipher suites and signature mechanisms that are defined by https://www.rfc-editor.org/rfc/rfc8446 as MUST or SHOULD requirements.

      - Add the algorithms that are required by CNSA 1.0. CNSA 1.0 support was added in JDK 19: https://bugs.openjdk.org/browse/JDK-8267319.

      No required algorithms or protocols are being removed at this time.

      [1] https://docs.oracle.com/en/java/javase/23/docs/specs/security/standard-names.html#security-algorithm-implementation-requirements

            mullan Sean Mullan
            mullan Sean Mullan
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: