Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8208350

Disable all DES cipher suites

    XMLWordPrintable

    Details

      Backports

        Description

        DES-based TLS cipher suites should be disabled. They are currently available but not enabled by default. To use them they must be explicitly enabled by an application, for example, by calling `SSLSocket.setEnabledCipherSuites`. Due to the age and insecurity of 56-bit DES, these cipher suites should no longer be available without additional intervention by the user or administrator through the `jdk.tls.disabledAlgorithms` Security property.

          Attachments

            Issue Links

            There are no Sub-Tasks for this issue.

              Activity

                People

                Assignee:
                jnimeh Jamil Nimeh
                Reporter:
                mullan Sean Mullan
                Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                  Dates

                  Created:
                  Updated:
                  Resolved: