JDK-8163326 : Update the default enabled cipher suites preference
- Type: Enhancement
- Component: security-libs
- Sub-Component: javax.net.ssl
- Priority: P3
- Status: Resolved
- Resolution: Fixed
- Submitted: 2016-08-06
- Updated: 2021-11-02
- Resolved: 2019-04-04
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
| JDK 11 | JDK 13 | JDK 16 | JDK 7 | JDK 8 | Other |
|---|---|---|---|---|---|
| 11.0.13-oracleFixed | 13 b16Fixed  |
16-poolResolved | 7u321Fixed | 8u311Fixed | openjdk7uFixed |
Related Reports
|
CSR :
|
|
|
Relates :
|
Sub Tasks
|
JDK-8219551 :
|
Description
At present, the SunJSSE provider prefers the better performance of key exchange and digital signature algorithm, in the order of ECDHE-ECDSA, ECDHE-RSA, RSA, ECDH-ECDSA, ECDH-RSA, DHE-RSA, DHE-DSS. Forward secrecy should be preferable first. If the DHE ephemeral key limitation get resolved, the order should be changed to ECDHE-ECDSA, ECDHE-RSA, DHE-RSA, DHE-DSS, ECDH-ECDSA, ECDH-RSA, RSA.
Comments
|