webrev.01 of 8011402: Move blacklisting certificate logic from hard code to data
Sean Mullan
sean.mullan at oracle.com
Wed Sep 18 14:08:42 UTC 2013
On 09/18/2013 09:32 AM, Weijun Wang wrote:
>
>
> On 9/18/13 9:20 PM, Sean Mullan wrote:
>> I think it may be worth adding (maybe not for JDK 8 but JDK 9) a new
>> method to the Certificate class called getFingerPrint(String alg) ...
>> This way the fingerprint would not have to be calculated every time when
>> using 3rd party providers for CertificateFactory.
>
> Yes.
>
> Or should it belong to X509Certificate? I don't know any Certificate
> which is not of X509 type.
True, but I think it is best if it is in the Certificate class since
types other than X.509 could implement it.
--Sean
More information about the security-dev
mailing list