Support algorithm constraints and certificate checks in SunX509 key manager

XMLWordPrintable

    • Type: Enhancement
    • Resolution: Fixed
    • Priority: P4
    • 26
    • Affects Version/s: None
    • Component/s: security-libs
    • None

      SunX509 key manager should support the same certificate checks that are supported by PKIX key manager.

      Effectively there should be only 2 differences between 2 key managers:
      - PKIX supports multiple key stores through KeyStore.Builder interface while SunX509 supports only a single keystore.
      - SunX509 caches its whole key store on initialization thus improving performance. This means that subsequent modifications of the KeyStore have no effect on SunX509 KM, unlike PKIX .

        1.
        		 Update JDK Providers Documentation: description of SunX509 Sub-task Resolved Raymond Gallardo  
        2.
        		 Release Note: Support Algorithm Constraints and Certificate Checks in SunX509 Key Manager Sub-task Resolved Artur Barashev  
        3.
        		 Release Note: Support algorithm constraints and certificate checks in SunX509 key manager Sub-task Closed Artur Barashev  

            Assignee:
            Artur Barashev
            Reporter:
            Artur Barashev
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: