Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8157035

Use stronger algorithms and keys for JSSE testing

          Details

          • Type: Bug
          • Status: Closed
          • Priority: P3
          • Resolution: Fixed
          • Affects Version/s: None
          • Fix Version/s: 9
          • Component/s: security-libs
          • Labels:

            Backports

              Description

              test/javax/net/ssl/etc/keystore is used a lot for X.509 cert based SSL/TLS authentication. MD5 and SHA1 are used as the signature algorithms. The key size of EC certs is 192 bits.

              MD5 has been disabled, and 192-bits EC keys will be disabled in the near future(see JDK-8148516). It's time to use stronger algorithms (SHA256) and keys (2048-bits for RSA/DSA and 256-bits for EC)

                Attachments

                  Issue Links

                  backported by

                  Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8178721 Use stronger algorithms and keys for JSSE testing

                  • P3 - Major loss of function.
                  • Resolved

                  Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8183849 Use stronger algorithms and keys for JSSE testing

                  • P3 - Major loss of function.
                  • Resolved

                  Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8192583 Use stronger algorithms and keys for JSSE testing

                  • P3 - Major loss of function.
                  • Resolved
                  relates to

                  Enhancement - null JDK-8211883 Disable anon and NULL cipher suites

                  • P3 - Major loss of function.
                  • Resolved

                    Activity

                      People

                      • Assignee:
                        xuelei Xue-Lei Fan
                        Reporter:
                        xuelei Xue-Lei Fan
                      • Votes:
                        0 Vote for this issue
                        Watchers:
                        3 Start watching this issue

                        Dates

                        • Created:
                          Updated:
                          Resolved: