TLS 1.3 support in JDK

Bradford Wetmore bradford.wetmore at oracle.com
Fri Aug 4 23:13:59 UTC 2017


Hi Neetish,

 > I am new to JDK development mailing list. 21 drafts fro TLS 1.3 have
 > come out so far. Is there any ongoing work on including TLS 1.3 in
 > JDK. If so, please refer.

We are definitely monitoring the progress of the TLS 1.3 drafts as they 
make their way through the IETF standards process.  Each draft has had 
fairly significant changes, making any intermediate draft implementation 
ephemeral and interoperability difficult.

When the IETF TLS WG settles on a draft, and our plans become more 
concrete, we will definitely be sharing our thoughts on APIs and 
implementations on this list for review.

 > TLS 1.3 has been implemented in OpenSSL. Is there any way to use
 > OpenSSL in java in place of in-built SSL library.

If you do a web search, you'll find prior efforts in this space, but we 
have not evaluated nor can we make any recommendations, especially as to 
whether any of these are current enough to suit your needs (e.g. 
1.3draft-XX support).

Thanks,

Brad



On 8/1/2017 9:21 PM, Neetish Pathak wrote:
> Hello all,
> I am new to JDK development mailing list. 21 drafts fro TLS 1.3 have 
> come out so far. Is there any ongoing work on including TLS 1.3 in JDK. 
> If so, please refer.
> 
> TLS 1.3 has been implemented in OpenSSL. Is there any way to use OpenSSL 
> in java in place of in-built SSL library.
> 
> Thanks
> Best Regards,
> Neetish



More information about the security-dev mailing list