JDK-8015388 : Required algorithms for JDK 9
  • Type: Task
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 9
  • Priority: P3
  • Status: Resolved
  • Resolution: Fixed
  • Submitted: 2013-05-24
  • Updated: 2017-06-15
  • Resolved: 2015-09-16
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 9
9 b83Fixed
Related Reports
Relates :  
JDK-8180307 - Update JDK 9 Required Cipher Algorithms
Relates :  
JDK-8172869 - 4096 is not supported yet for the DH Parameter Generator
Relates :  
JDK-8136649 - Document new required algorithms in Standard Algorithm Names guide
Sub Tasks
JDK-8173277 :  
Release Note: Required Algorithms for JDK 9 - Closed
Description
Several new algorithms have been implemented in JDK 8, and some weaker algorithms are being phased out or no longer recommended for use by standards bodies such as NIST. We should review the implementation requirements at http://docs.oracle.com/javase/7/docs/technotes/guides/security/StandardNames.html#impl and make changes as appropriate.
Comments
The new proposed requirements are (keysize in parentheses): 1. Signature: SHA256withDSA 2. KeyPairGenerator: DSA (2048), DiffieHellman (2048, 4096), RSA (4096) 3. AlgorithmParameterGenerator: DSA (2048), DiffieHellman (2048, 4096) 4. Cipher: AES/GCM/NoPadding (128), AES/GCM/PKCS5Padding (128) 5. SSLContext: TLSv1.1, TLSv1.2
04-09-2015
JCK security tests should be updated to test that these algorithms are always available.
04-09-2015