[JDK-8157035] Use stronger algorithms and keys for JSSE testing - Java Bug System

Details

Type: Bug
Status: Closed
Priority: P3
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 9
Component/s: security-libs
Labels:
- noreg-self

Subcomponent:
javax.net.ssl
Resolved In Build:
b120

Backports

Issue	Fix Version	Assignee	Priority	Status	Resolution	Resolved In Build
JDK-8183849	8u161	Sean Coffey	P3	Resolved	Fixed	b01
JDK-8178721	8u152	Sean Coffey	P3	Resolved	Fixed	b04
JDK-8192583	emb-8u161	Sean Coffey	P3	Resolved	Fixed	b01

Description

test/javax/net/ssl/etc/keystore is used a lot for X.509 cert based SSL/TLS authentication. MD5 and SHA1 are used as the signature algorithms. The key size of EC certs is 192 bits.

MD5 has been disabled, and 192-bits EC keys will be disabled in the near future(see ~~JDK-8148516~~). It's time to use stronger algorithms (SHA256) and keys (2048-bits for RSA/DSA and 256-bits for EC)

Attachments

Issue Links

backported by

JDK-8178721 Use stronger algorithms and keys for JSSE testing

Resolved

JDK-8183849 Use stronger algorithms and keys for JSSE testing

Resolved

JDK-8192583 Use stronger algorithms and keys for JSSE testing

Resolved

relates to

JDK-8211883 Disable anon and NULL cipher suites

Resolved

Activity

People

Assignee:

Xue-Lei Fan

Reporter:

Xue-Lei Fan

Votes:

0 Vote for this issue

Watchers:

3 Start watching this issue

Dates

Created:

2016-05-16 05:27

Updated:

2018-11-05 06:02

Resolved:

2016-05-18 07:52

Down for Maintenance on Friday, July 19 from 12-2PM PDT (7-9PM GMT)