JDK 11 | JDK 7 | JDK 8 | Other |
---|---|---|---|
11.0.13Fixed | 7u321Fixed | 8u311Fixed | openjdk7uFixed |
CSR :
|
|
Relates :
|
JDK-8219551 :
|
At present, the SunJSSE provider prefers the better performance of key exchange and digital signature algorithm, in the order of ECDHE-ECDSA, ECDHE-RSA, RSA, ECDH-ECDSA, ECDH-RSA, DHE-RSA, DHE-DSS. Forward secrecy should be preferable first. If the DHE ephemeral key limitation get resolved, the order should be changed to ECDHE-ECDSA, ECDHE-RSA, DHE-RSA, DHE-DSS, ECDH-ECDSA, ECDH-RSA, RSA.
|