RFR[15]: 8172404: Tools should warn if weak algorithms are used before restricting them
Hai-May Chao
hai-may.chao at oracle.com
Sun Apr 5 16:51:34 UTC 2020
Here is the webrev:
http://cr.openjdk.java.net/~weijun/8172404/webrev.00/
Thanks,
Hai-May
> On Apr 4, 2020, at 11:41 PM, Hai-May Chao <hai-may.chao at oracle.com> wrote:
>
> Hi,
>
> I'd like to request a review for:
>
> Bug: https://bugs.openjdk.java.net/browse/JDK-8172404 <https://bugs.openjdk.java.net/browse/JDK-8172404>
> CSR: https://bugs.openjdk.java.net/browse/JDK-8238640 <https://bugs.openjdk.java.net/browse/JDK-8238640>
>
> It’d be useful to start warning users that certain algorithms and key lengths are becoming weak, so that users could begin transition away from them before they are actually disabled. A new security property named jdk.security.legacyAlgorithms is added to the java.security file to list the legacy algorithms. The keytool and jarsigner tools are enhanced to enforce the new property and to emit the warning messages when legacy algorithms are used.
>
> Thanks,
> Hai-May
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20200405/054bb4eb/attachment.htm>
More information about the security-dev
mailing list