OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
1234 ... 256
Topics (8946)
Replies Last Post Views
[14]RFR 8180392: SunJCE provider should throw exceptions for unsupported mode and padding combinations by Valerie Peng
1
by Xuelei Fan-2
Re: [11u] RFR: 8223482: Unsupported ciphersuites may be offered by a TLS client by Martin Balao
0
by Martin Balao
Is Digicert's continued use of the "Distrusted" certificates for code signing still valid? by Bert Eisen
3
by Sean Mullan
[13] RFR 8227595: keytool/fakegen/DefaultSignatureAlgorithm.java fails due to "exitValue = 6" by Weijun Wang
2
by Sean Mullan
[13] RFR 8228341: SignTwice.java fails intermittently on Windows by Weijun Wang
1
by Sean Mullan
RFR[14] Re-enable Stateless Resumption On by default for merge to mainline by Anthony Scarpino
6
by Sean Mullan
ManifestDigester fails with a manifest ending in CR by Philipp Kunz
18
by Weijun Wang
RFR[13] 8228399: Remove mistaken open.iml by Anthony Scarpino
1
by Xuelei Fan-2
[13] RFR 8228342: Add SignTwice.java to problem list by Weijun Wang
1
by Xuelei Fan-2
RFR 8227437: S4U2proxy cannot continue because server's TGT cannot be found by Martin Balao
8
by Weijun Wang
RFR: 8228337: problemList failing/ignored manual tests in security-libs by Rajan Halade
1
by Anthony Scarpino
RFR 8226338: Updates to Stateless Resumption by Anthony Scarpino
7
by Jamil Nimeh
RFR[13]: 8227551 Session Resumption without Server-Side State off by default by Anthony Scarpino
3
by Anthony Scarpino
RFR[13] Release Note for Stateless Resumption by Anthony Scarpino
7
by Anthony Scarpino
RFR [14] JDK-8226374 Restrict signature algorithms and named groups by Xuelei Fan-2
4
by Xuelei Fan-2
RE: [11u] RFR: 8216039: TLS with BC and RSASSA-PSS breaks ECDHServerKeyExchange by Langer, Christoph
2
by Hohensee, Paul
RFR 8227530: Session Resumption without Server-Side State off by default by Anthony Scarpino
3
by Sean Mullan
RFR[13] JDK-8225745: NoSuchAlgorithmException exception for SHA256withECDSA with RSASSA-PSS support by Valerie Peng
7
by Weijun Wang
RFR [14] JDK-8227024 : Remove the deprecated javax.security.cert APIs by Xuelei Fan-2
5
by Xuelei Fan-2
RFR 8076999: SunJCE support of password-based encryption scheme 2 params (PBES2) not working by Jamil Nimeh
7
by Valerie Peng
[13] RFR 8227059: sun/security/tools/keytool/DefaultSignatureAlgorithm.java timed out by Weijun Wang
5
by Xuelei Fan-2
RFR 6722928: Support SSPI as a native GSS-API provider by Weijun Wang
78
by Xuelei Fan-2
RFR 8227381: GSS login fails with PREAUTH_FAILED by Weijun Wang
1
by Xuelei Fan-2
RFR[13] JDK-8181386: CipherSpi ByteBuffer to byte array conversion fails for certain data overlap conditions by Valerie Peng
2
by Xuelei Fan-2
RFR [13] JDK-8226374 Restric signature algorithms and named groups by Xuelei Fan-2
5
by Xuelei Fan-2
RFR 8227305: Krb5Util::getTicketFromSubjectAndTgs is useless by Weijun Wang
1
by Xuelei Fan-2
[11u] RFR: 8216039: TLS with BC and RSASSA-PSS breaks ECDHServerKeyExchange by Langer, Christoph
0
by Langer, Christoph
[13] RFR 8227061: KDC.java test behaves incorrectly when AS-REQ contains a PAData not PA-ENC-TS-ENC by Weijun Wang
1
by Sean Mullan
[13] RFR 8226963: More clarification on possible sequencing error in GSSContext::unwrap by Weijun Wang
1
by Sean Mullan
[13] RFR 8226719: Kerberos login to Windows 2000 failed with "Inappropriate type of checksum in message" by Weijun Wang
3
by Weijun Wang
Change in behaviour of SSLSessionContext APIs in recent Java 13 EA versions by Jaikiran Pai
4
by Anthony Scarpino
[PATCH] JDK-8226976 - SessionTimeOutTests uses == operator for String value check by Jaikiran Pai
5
by Jaikiran Pai
Request for Review [14] JDK-8226976, SessionTimeOutTests uses == operator for String value check by Xuelei Fan-2
6
by Xuelei Fan-2
[11u]: RFR: Backport of 8215694: keytool cannot generate RSASSA-PSS certificates by Langer, Christoph
4
by Hohensee, Paul
[8u] RFR Backport: 8208698: Improved ECC Implementation by Alvarez, David
3
by Andrew John Hughes-3
1234 ... 256