Bug ID: JDK-8267330 Reassess Suite B TLS cipher suite preference

JDK-8267330 : Reassess Suite B TLS cipher suite preference

Type: Enhancement
Component: security-libs
Sub-Component: javax.net.ssl

Priority: P3
Status: Open
Resolution: Unresolved

Submitted: 2021-05-18
Updated: 2021-12-13

Versions (Unresolved/Resolved/Fixed)

The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.

JDK 19
19Unresolved

Description

According to Wikipedia, Suite B was replaced with with the Commercial National Security Algorithm Suite in 2018: https://en.wikipedia.org/wiki/Commercial_National_Security_Algorithm_Suite.  We may want to reassess whether we need to prefer Suite B compliant cipher suites anymore.

The Suite-B has been in historic status per RFC 8423.  The JSSE cipher suite preference is impacted by Suite-B.  It may be safe to to improve the Suite-B impact now.