RFR: 8314323: Implement JEP 527: TLS 1.3 Hybrid Key Exchange [v6]
Hai-May Chao
hchao at openjdk.org
Wed Dec 3 21:18:40 UTC 2025
On Wed, 26 Nov 2025 03:36:15 GMT, Bradford Wetmore <wetmore at openjdk.org> wrote:
>> We introduce DH Provider that implements DH as a KEM, and DH is wrapped as a KEM for encapsulate and decapsulate. It is an internal translation layer, not a real new public algorithm, so it is not exposed to public.
>
> The `Provider` needs much more info here about what it's doing, and that this `Provider` doesn't actually get installed in the system's list of security providers that is searched at runtime.
>
> This is strictly an internal provider used in the JSSE code.
Comments added for the `Provider` as suggested.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/27614#discussion_r2586634107
More information about the security-dev
mailing list