JDK-8208648 : ECC Field Arithmetic Enhancements
  • Type: Enhancement
  • Component: security-libs
  • Sub-Component: javax.crypto
  • Affected Version: 7,8,11,12
  • Priority: P4
  • Status: Resolved
  • Resolution: Fixed
  • Submitted: 2018-08-01
  • Updated: 2020-02-18
  • Resolved: 2018-12-11
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 11 JDK 12 JDK 7 JDK 8 Other
11.0.2Fixed 12 b24Fixed 7u231Fixed 8u221Fixed openjdk7uFixed
Related Reports
Blocks :  
Blocks :  
There are a some enhancements related to finite field arithmetic that are needed for both the ECDH/ECDSA implementation and EdDSA. In order to decompose these problems, and to allow multiple ECC efforts to run in parallel, these enhancements will be developed under a separate ticket.

1) Develop a code generator for finite fields that can produce efficient implementations in Java for all the required fields. This includes the underlying field for ECC operations as well as the field of integers modulo the order of the group, which is used in signature operations.
2) Generalize the finite field implementation to allow an arbitrary number of additions before each multiplication/reduction.
3) Add some new useful operations to the field arithmetic API, including conditional assignment and reduction.

In addition, the new 6 new fields for ECDH/ECDSA will be generated and tested under this ticket.
Taking this one for 8u

Fix Request (11u) Backporting this lays out the work for supporting ECDH/ECDSA (which TLS 1.3 would use, see JDK-8166597). Patch applies cleanly to 11u and passes jdk_security suite, which includes new tests. It adds a few new classes in sun.security.*, but that is private API anyway. Risk is low.