Use of OpenSSL as JCE security provider if available on system
Steve Groeger
GROEGES at uk.ibm.com
Fri Mar 15 09:46:33 UTC 2019
Hi all,
Not sure whether something on this subject has been raised before but I
was unable to see anything in the mailing lists.
We have been looking at adding support to Java to use the OpenSSL
libraries as a JCE security provider if available on the system that a
Java application is being run on (or to build and bundle the OpenSSL
libraries with the JDK).
If not found then the security drops back to using the built in security
that is part of the existing JDK.
The use of the OpenSSL libraries can be disabled entirely or specific
algorithms can be disabled by use of command line options,
i.e. Djdk.nativeCrypto=true | false and -Djdk.nativeDigest=true | false
Would this be something that might be useful to be contributed to OpenJDK.
Thanks
Steve Groeger
IBM Runtime Technologies
Hursley, Winchester
Tel: (44) 1962 816911 Mobex: 279990 Mobile: 07718 517 129
Fax (44) 1962 816800
Lotus Notes: Steve Groeger/UK/IBM
Internet: groeges at uk.ibm.com
Unless stated otherwise above:
IBM United Kingdom Limited - Registered in England and Wales with number
741598.
Registered office: PO Box 41, North Harbour, Portsmouth, Hampshire PO6 3AU
Unless stated otherwise above:
IBM United Kingdom Limited - Registered in England and Wales with number
741598.
Registered office: PO Box 41, North Harbour, Portsmouth, Hampshire PO6 3AU
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20190315/7a5bda70/attachment.htm>
More information about the security-dev
mailing list