Integrated: 8256660: Disable DTLS 1.0

Sean Mullan mullan at openjdk.org
Mon Oct 31 16:49:54 UTC 2022


On Fri, 28 Oct 2022 17:00:12 GMT, Sean Mullan <mullan at openjdk.org> wrote:

> Disable DTLS 1.0 by default. This version of DTLS has weakened over time and lacks support for stronger cipher suites. DTLS 1.0 correlates with version 1.1 of TLS which has already been disabled by default in JDK 16. The IETF has deprecated this version of DTLS (along with TLS 1.0 and 1.1) in RFC 8996: https://www.rfc-editor.org/rfc/rfc8996.html.
> 
> CSR: https://bugs.openjdk.org/browse/JDK-8280507

This pull request has now been integrated.

Changeset: 16744b34
Author:    Sean Mullan <mullan at openjdk.org>
URL:       https://git.openjdk.org/jdk/commit/16744b34498e7aac59caef8c9b1a3d4d15f8c22e
Stats:     56 lines in 3 files changed: 27 ins; 5 del; 24 mod

8256660: Disable DTLS 1.0

Reviewed-by: xuelei, hchao, wetmore

-------------

PR: https://git.openjdk.org/jdk/pull/10905


More information about the security-dev mailing list