Integrated: 8256660: Disable DTLS 1.0

Sean Mullan mullan at
Mon Oct 31 16:49:54 UTC 2022

On Fri, 28 Oct 2022 17:00:12 GMT, Sean Mullan <mullan at> wrote:

> Disable DTLS 1.0 by default. This version of DTLS has weakened over time and lacks support for stronger cipher suites. DTLS 1.0 correlates with version 1.1 of TLS which has already been disabled by default in JDK 16. The IETF has deprecated this version of DTLS (along with TLS 1.0 and 1.1) in RFC 8996:
> CSR:

This pull request has now been integrated.

Changeset: 16744b34
Author:    Sean Mullan <mullan at>
Stats:     56 lines in 3 files changed: 27 ins; 5 del; 24 mod

8256660: Disable DTLS 1.0

Reviewed-by: xuelei, hchao, wetmore



More information about the security-dev mailing list