Certicom SSL supports the possibilty to disable client initiated renegotiation
JSSE does not support this functionality.
WLS used to use Certicom-SSL. Now JSSE.
Hence there is s a loss of functionality.
Seems as if the needed work is already mostly done by one guy named Neale Rudd (http://wiki.metawerx.net/wiki/NealeRudd)
He is talking about a patch for openjdk that delivers exactly this feature in JSSE.
This is the mailinglist thread: