Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-6878826

Add support for Extended Validation certificates

    XMLWordPrintable

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: P3
    • Resolution: Won't Fix
    • Affects Version/s: 7
    • Fix Version/s: None
    • Component/s: security-libs
    • Labels:
      None

      Description

      We should investigate what is needed to fully support Extended Validation certificates in our SSL/TLS implementation. For example, we may want to enable revocation checking via OCSP by default (see 6869739) and add support for OCSP stapling (part of the TLS extensions RFC 3546) and perhaps new APIs and security dialogs that identify SSL/TLS connections that use EV certs.

      See: http://cabforum.org/EV_Certificate_Guidelines_V11.pdf (GUIDELINES FOR THE ISSUANCE AND MANAGEMENT OF EXTENDED VALIDATION CERTIFICATES) for more specific information on EV certs.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              xuelei Xuelei Fan
              Reporter:
              mullan Sean Mullan
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:
                Imported:
                Indexed: