webrev.01 of 8011402: Move blacklisting certificate logic from hard code to data

Weijun Wang weijun.wang at oracle.com
Wed Sep 18 13:32:11 UTC 2013



On 9/18/13 9:20 PM, Sean Mullan wrote:
> I think it may be worth adding (maybe not for JDK 8 but JDK 9) a new
> method to the Certificate class called getFingerPrint(String alg) ...
> This way the fingerprint would not have to be calculated every time when
> using 3rd party providers for CertificateFactory.

Yes.

Or should it belong to X509Certificate? I don't know any Certificate 
which is not of X509 type.

--Max




More information about the security-dev mailing list