Use of OpenSSL as JCE security provider if available on system
Darran Lofthouse
darran.lofthouse at jboss.com
Fri Mar 15 14:26:58 UTC 2019
FYI if anyone is interested in using OpenSSL through a Java security
Provider we have this project available within the WildFly project: -
https://github.com/wildfly/wildfly-openssl
On Fri, Mar 15, 2019 at 9:48 AM Steve Groeger <GROEGES at uk.ibm.com> wrote:
> Hi all,
>
> Not sure whether something on this subject has been raised before but I
> was unable to see anything in the mailing lists.
>
> We have been looking at adding support to Java to use the OpenSSL
> libraries as a JCE security provider if available on the system that a Java
> application is being run on (or to build and bundle the OpenSSL libraries
> with the JDK).
>
> If not found then the security drops back to using the built in security
> that is part of the existing JDK.
>
> The use of the OpenSSL libraries can be disabled entirely or specific
> algorithms can be disabled by use of command line options,
> i.e. Djdk.nativeCrypto=true | false and -Djdk.nativeDigest=true | false
>
> Would this be something that might be useful to be contributed to OpenJDK.
>
> Thanks
> Steve Groeger
> IBM Runtime Technologies
> Hursley, Winchester
> Tel: (44) 1962 816911 Mobex: 279990 Mobile: 07718 517 129
> Fax (44) 1962 816800
> Lotus Notes: Steve Groeger/UK/IBM
> Internet: groeges at uk.ibm.com
>
> Unless stated otherwise above:
> IBM United Kingdom Limited - Registered in England and Wales with number
> 741598.
> Registered office: PO Box 41, North Harbour, Portsmouth, Hampshire PO6 3AU
> Unless stated otherwise above:
> IBM United Kingdom Limited - Registered in England and Wales with number
> 741598.
> Registered office: PO Box 41, North Harbour, Portsmouth, Hampshire PO6 3AU
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20190315/183f7828/attachment.htm>
More information about the security-dev
mailing list