Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8148516

Increase the minimum strength of EC keys

    Details

    • Subcomponent:
    • Resolved In Build:
      b127
    • Verification:
      Verified

      Backports

        Description

        Per NIST SP 800-57, EC curves less than 224 should be disallowed since 2013, and curves less than 256 should be disallowed since 2030.

        As EC usage in TLS is relative new, almost all TLS implementations default to the NIST P-256 or stronger curves. Disable curves less than 256 bits should cause no issues.

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  vtheeyarath Vivek Theeyarath
                  Reporter:
                  xuelei Xue-Lei Fan
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  11 Start watching this issue

                  Dates

                  • Due:
                    Created:
                    Updated:
                    Resolved: