Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8256660 Disable DTLS 1.0
  3. JDK-8296134

Release Note: Disabled DTLS 1.0

    XMLWordPrintable

Details

    • Sub-task
    • Resolution: Delivered
    • P3
    • 20
    • 11.0.24-oracle, 17.0.12-oracle, 20
    • security-libs

    Description

      DTLS 1.0 has been disabled by default, by adding "DTLSv1.0" to the `jdk.tls.disabledAlgorithms` security property in the `java.security` configuration file. DTLS 1.0 has weakened over time and lacks support for stronger cipher suites. Any attempts to use DTLSv1.0 will fail with an `SSLHandshakeException`. Users can, at their own risk, re-enable the version by removing "DTLSv1.0" from the `jdk.tls.disabledAlgorithms` security property.

      Attachments

        Activity

          People

            mullan Sean Mullan
            mullan Sean Mullan
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: