Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8286433

Cache certificates decoded from TLS session tickets

    XMLWordPrintable

    Details

    • Type: Enhancement
    • Status: Resolved
    • Priority: P4
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 19
    • Component/s: security-libs
    • Labels:

      Description

      When a TLS server resumes a session from a stateless session ticket, it reads the local and the peer certificate chains from the ticket, creating unique X509CertImpl objects for every resumed session.

      The same local certificates are usually used across many resumed connections. Reusing the same certificate objects instead of generating new ones every time will reduce the amount of memory needed to resume a TLS session.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              djelinski Daniel Jelinski
              Reporter:
              djelinski Daniel Jelinski
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: