[JDK-8253587] Release Note: Support for X25519 and X448 in TLS - Java Bug System

XML

Word

Printable

Details

Type: Sub-task
Status: Closed
Priority: P4
Resolution: Delivered
Affects Version/s: 11.0.10-oracle
Fix Version/s: 11.0.10-oracle
Component/s: security-libs
Labels:
- RN-NewFeature
- jdk11u-na

Subcomponent:
javax.net.ssl
Verification:
Verified

Description

The named elliptic curve groups `x25519` and `x448` are now available for JSSE key agreement in TLS versions 1.0 to 1.3, with `x25519` being the most preferred of the default enabled named groups. The default ordered list is now:

```
x25519, secp256r1, secp384r1, secp521r1, x448,
ffdhe2048, ffdhe3072, ffdhe4096, ffdhe6144, ffdhe8192
```

The default list can be overridden by using the system property *`jdk.tls.namedGroups`*.

Attachments

Activity

People

Assignee:: Prasadarao Koppula

Reporter:: Prasadarao Koppula

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2020-09-24 02:18

Updated:: 2021-12-01 17:01

Resolved:: 2021-12-01 17:01