Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8148516

Increase the minimum strength of EC keys

    XMLWordPrintable

    Details

    • Subcomponent:
    • Resolved In Build:
      b127
    • Verification:
      Verified

      Backports

        Description

        Per NIST SP 800-57, EC curves less than 224 should be disallowed since 2013, and curves less than 256 should be disallowed since 2030.

        As EC usage in TLS is relative new, almost all TLS implementations default to the NIST P-256 or stronger curves. Disable curves less than 256 bits should cause no issues.

          Attachments

            Issue Links

              Activity

                People

                Assignee:
                vtheeyarath Vivek Theeyarath (Inactive)
                Reporter:
                xuelei Xue-Lei Fan
                Votes:
                0 Vote for this issue
                Watchers:
                11 Start watching this issue

                  Dates

                  Due:
                  Created:
                  Updated:
                  Resolved: