Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8286433

Cache certificates decoded from TLS session tickets

    XMLWordPrintable

Details

    • Enhancement
    • Status: Resolved
    • P4
    • Resolution: Fixed
    • None
    • 19
    • security-libs

    Description

      When a TLS server resumes a session from a stateless session ticket, it reads the local and the peer certificate chains from the ticket, creating unique X509CertImpl objects for every resumed session.

      The same local certificates are usually used across many resumed connections. Reusing the same certificate objects instead of generating new ones every time will reduce the amount of memory needed to resume a TLS session.

      Attachments

        Issue Links

          Activity

            People

              djelinski Daniel Jelinski
              djelinski Daniel Jelinski
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: