OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
1234 ... 236
Topics (8242)
Replies Last Post Views
Code review request: JDK-8046295 - Support Trusted CA Indication extension by Martin Balao
14
by Martin Balao
RFR 8183591: Incorrect behavior when reading DER value with Integer.MAX_VALUE length by Adam Petcher
7
by Sean Mullan
8184916: DisabledAlgorithmConstraints loading should be delayed until needed by Alan Bateman
1
by Sean Mullan
jar verification regression Oracle 8u141 by Bernd Eckenfels-4
2
by Bernd Eckenfels-4
RFR[10] JDK-8177017: com/oracle/security/ucrypto/TestAES.java fails intermittently by sha.jiang
4
by Valerie Peng
RFR 10 (XS): 8184673: Fix compatibility issue in AlgorithmChecker for 3rd party JCE providers by Langer, Christoph
6
by Anthony Scarpino
[10] RFR: JDK-8183310: java/security/modules/ModularTest.java should clean up better by Sibabrata Sahoo
0
by Sibabrata Sahoo
RE: [RFR] 8174849: Change SHA1 certpath restrictions - issue with 3rd party JCE provider by Langer, Christoph
11
by Langer, Christoph
Re: JDK-8182879: Add warnings to keytool when using JKS and JCEKS by Weijun Wang
1
by Sean Mullan
[10] RFR 8166222: Don't treat signed jars with invalid timestamps as unsigned by Weijun Wang
9
by Weijun Wang
RFR JDK-8179614: Test for jarsigner on verifying jars that are signed and timestamped by other JDK releases by sha.jiang
13
by sha.jiang
RFR: 8184208: update class="striped" tables for accessibility by Jonathan Gibbons
3
by Lance Andersen
RFR 8182999: SunEC throws ProviderException on invalid curves by Adam Petcher
12
by Vincent Ryan
(10) RFR of JDK-8184165: sun.security.provider.PolicyFile$PolicyEntry.toString() throws MissingResourceException by Hamlin Li
7
by Hamlin Li
(10) RFR of JDK-8184234: sun.security.provider.AuthPolicyFile$PolicyEntry.toString() throws MissingResourceException by Hamlin Li
1
by Weijun Wang
[10] RFR 8183509: keytool should not allow multiple commands by Weijun Wang
4
by Sean Mullan
AccessController.doPrivileged and default methods by Michael Rasmussen
3
by Sean Mullan
10 RFR of JDK-8183990: compilation error for test/com/sun/crypto/provider/Cipher/DES/PerformanceTest.java by Hamlin Li
3
by Weijun Wang
JDK 10 RFR of JDK-8183531: Wrong @modules in test/javax/net/ssl/ciphersuites/ECCurvesconstraints.java by Amy Lu-2
2
by Brad R. Wetmore
ECNamedCurveSpec by Anders Rundgren
0
by Anders Rundgren
JDK 8 does not comply with RFC 5915 by Anders Rundgren
4
by Anders Rundgren
Java/JCE CFRG integration spec on GitHub by Anders Rundgren
0
by Anders Rundgren
Support for CFRG (curve25519 etc) in Java/JCE by Anders Rundgren
5
by Anders Rundgren
How do I know which granted permission is not needed? by Weijun Wang
5
by Weijun Wang
RFR 8181975: Run sun/security/pkcs11 tests on Mac by Bhanu Prakash Gopula...
1
by Seán Coffey
RFR 8182118: Package summary is missing in jdk.security.auth module by Weijun Wang
8
by Mandy Chung
[10] RFR: 8182388: Backout 8182143 by Artem Smotrakov
2
by Bernd Eckenfels-4
RFR [9]: 8181295: Document that SecurityManager::checkPackageAccess may be called by the VM by Sean Mullan
3
by Mandy Chung
[10] RFR: 8182143: SHA224-based signature algorithms are not enabled for TLSv12 on Windows by Artem Smotrakov
6
by Artem Smotrakov
Stricter Public Key checking corrupts JKS by Bernd Eckenfels-4
3
by Bernd Eckenfels-4
RFR 8181841: A TSA server returns timestamp with precision higher than milliseconds by Weijun Wang
6
by Michael StJohns
[9] RFR 8181978: Keystore probing mechanism fails for large PKCS12 keystores by Vincent Ryan
1
by Sean Mullan
RFR[10] JDK-8179564: Missing @bug for tests added with JDK-8165367 by sha.jiang
1
by Weijun Wang
Untranslated common (ZIPCode OID.2.5.4.17) attribute by Bernd Eckenfels-4
0
by Bernd Eckenfels-4
RSASSA_PSS (for Certificates) by Bernd Eckenfels-4
1
by Brad R. Wetmore
1234 ... 236