[JDK-8259709] Disable SHA-1 XML Signatures - Java Bug System

XML

Word

Printable

Details

Type: Enhancement
Status: Resolved
Priority: P3
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 17
Component/s: security-libs
Labels:
- release-note=yes
- security-disabled-algs-sha1

Subcomponent:
javax.xml.crypto
Resolved In Build:
b13

Description

Disable XML Signatures that use SHA-1 based digest or signature algorithms. SHA-1 is no longer a recommended digest algorithm.

Attachments

Issue Links

csr for

JDK-8261246 Disable SHA-1 XML Signatures

Closed

relates to

JDK-8259801 Enable XML Signature secure validation mode by default

Resolved

links to

Commit openjdk/jdk/a6427c85

Review openjdk/jdk/2463

Options

Sub-Tasks

1.

Release Note: Disable SHA-1 XML Signatures

Closed

Sean Mullan

Activity

People

Assignee:: Sean Mullan

Reporter:: Sean Mullan

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2021-01-13 06:27

Updated:: 6 hours ago

Resolved:: 2021-03-04 09:22