JDK-6257040 : Define APIs for SSL master secret generation and key derivation
  • Type: Enhancement
  • Component: security-libs
  • Sub-Component: javax.crypto
  • Affected Version: 6
  • Priority: P3
  • Status: Closed
  • Resolution: Won't Fix
  • OS: generic
  • CPU: generic
  • Submitted: 2005-04-18
  • Updated: 2017-05-16
  • Resolved: 2010-05-19
Related Reports
Duplicate :  
JDK-6296418 - Null pointer in MAC.
Relates :  
JDK-6313661 - SSL/TLS key generation and key derivation using Sun-internal JCE APIs
Description
We should add standard APIs for the key generation and key derivation steps that need to be performed during the SSL/TLS handshake. Currently, no such APIs exist and SSL implementations (such as SunJSSE) perform the necessary hashing and other steps individually using crypto primitives. This is an issue because all the session secrets are stored in the Java heap even if secure crypto hardware is available. This applies to the premaster secret, master secret, cipher keys and ivs, and mac keys.

PKCS#11 defines the following mechanisms for these purposes:

 . RSA premaster secret key generation:
CKM_TLS_PRE_MASTER_KEY_GEN
CKM_SSL3_PRE_MASTER_KEY_GEN

 . master secret derivation:
CKM_TLS_MASTER_KEY_DERIVE
CKM_TLS_MASTER_KEY_DERIVE_DH
CKM_SSL3_MASTER_KEY_DERIVE
CKM_SSL3_MASTER_KEY_DERIVE_DH

 . derivation of cipher ivs and cipher and mac keys:
CKM_TLS_KEY_AND_MAC_DERIVE
CKM_SSL3_MASTER_KEY_DERIVE_DH

We should define APIs that can map to these PKCS#11 algorithms so that all cryptographic secrets can be stored on secure hardware crypto tokens.

###@###.### 2005-04-18 22:57:33 GMT
Comments
EVALUATION Not for jdk 7 neither. Close this for now. If it become more important later, this can be reopened.
19-05-2010
EVALUATION We were unable to get approval for this feature in Mustang, so it will be targeted for Dolphin instead. However, see 6313661.
19-08-2005
EVALUATION Affirmative. ###@###.### 2005-04-30 04:18:08 GMT
30-04-2005