Query - Does JSSE library implement the Ciphers or Algorithms of a SSL protocol ?

Ayaskant Swain ayaskant.swain at gmail.com
Wed Jun 1 08:06:20 UTC 2016

Hi All,

My question was not specific to those two cipher suites that I had pasted
in my query. I had just pasted them as examples. Rather my question was

I want to know which library or packages in JDK implement the
Algorithms/Ciphers that are used for SSL communication?

If java provides the implementation of those cryptographic Algos through
the *java.security , java.net.ssl & javax.crypto* packages then what is the
role of the *jsse.jar* library that ships in as part of the *JAVA_HOME/
jre/lib* directory?

I could clearly see the *jsse.jar *has classes like *Handshaker.class,
SSLContextImpl.class, HandShakeMessage.class* inside the sun.security.ssl
package which do the actual SSL Handshake. There are many more classes
inside this package.

So wanted clarification on this.


On Wed, Jun 1, 2016 at 1:22 PM, Seán Coffey <sean.coffey at oracle.com> wrote:

> On 01/06/2016 03:42, Jim Manico wrote:
> I think this is the right answer.
> From
> https://stackoverflow.com/questions/27323858/java-6-ecdhe-cipher-suite-support
> The SSL/TLS implementation "JSSE" in Java 1.6 and later supports ECDHE
> suites *IF there is an available (JCE) provider* for needed ECC
> primitives. *Java 1.6 OOTB does NOT* include such an ECC provider, but
> you can add one. *Java 7 and 8 do* include SunECC provider.
> I don't believe Ayaskant's query was specific to ECC. In any case, the
> above answer isn't accurate. ECC support is available OOTB in JDK
> 6 for Solaris. It's provided via the SunPKCS11 provider. SunEC provider
> was added in JDK 7:
> http://docs.oracle.com/javase/7/docs/technotes/guides/security/SunProviders.html#SunEC
> regards,
> Sean.
> - Jim
> On 5/29/16 8:02 PM, Ayaskant Swain wrote:
> Hi,
> Can anyone please help me know about this - Does JSSE library implement
> the Ciphers or Algorithms of a SSL protocol ? I see the jsse.jar library
> shipped with the JDK. I read the the Oracle document about JSSE -
> <http://docs.oracle.com/javase/8/docs/technotes/guides/security/jsse/JSSERefGuide.html#Introduction>
> http://docs.oracle.com/javase/8/docs/technotes/guides/security/jsse/JSSERefGuide.html#Introduction
> So my question is - does the JSSE implement the Ciphers or Algorithms that
> are used for a successful SSL handshake , server authentication, data
> integrity & data confidentiality (Application data encryption).
> Example of cipher suites - *TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 or *
> So is the coding of the above ciphers have been done in the JSSE library?
> Thanks
> Ayaskant
> Bangalore
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.openjdk.java.net/pipermail/security-dev/attachments/20160601/87a2184f/attachment.html>

More information about the security-dev mailing list