Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8157035

Use stronger algorithms and keys for JSSE testing

    Details

    • Type: Bug
    • Status: Closed
    • Priority: P3
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 9
    • Component/s: security-libs
    • Labels:

      Backports

        Description

        test/javax/net/ssl/etc/keystore is used a lot for X.509 cert based SSL/TLS authentication. MD5 and SHA1 are used as the signature algorithms. The key size of EC certs is 192 bits.

        MD5 has been disabled, and 192-bits EC keys will be disabled in the near future(see JDK-8148516). It's time to use stronger algorithms (SHA256) and keys (2048-bits for RSA/DSA and 256-bits for EC)

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  xuelei Xue-Lei Fan
                  Reporter:
                  xuelei Xue-Lei Fan
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  3 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: