OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
1234 ... 274
Topics (9562)
Replies Last Post Views
RFR: JDK-8261969: SNIHostName would check if the encoded hostname conform to RFC 3490 by John Jiang
9
by John Jiang
RFR: 8259886 : Improve SSL session cache performance and scalability by djelinski
9
by djelinski
RFR: 8254717: isAssignableFrom checks in KeyFactorySpi.engineGetKeySpec appear to be backwards by Ziyi Luo
5
by Jamil Nimeh-2
RFR: 8261462: GCM ByteBuffer decryption problems by Anthony Scarpino-2
2
by Anthony Scarpino-2
RFR: 8262438: sun/security/ssl/SSLLogger/LoggingFormatConsistency.java failed with "SocketException: Socket is closed" by Evan Whelan-2
4
by Daniel Fuchs-2
RFR: 8261355: No data buffering in SunPKCS11 Cipher encryption when the underlying mechanism has no padding by Martin Balao-2
2
by Valerie Peng-2
Re: RFR: 8248862: Implement Enhanced Pseudo-Random Number Generators [v27] by Jim Laskey-3
0
by Jim Laskey-3
RFR: 8260923: Add more tests for SSLSocket input/output shutdown by Abdul Kolarkunnu
1
by Abdul Kolarkunnu
RFR: JDK-8262509: JSSE Server should check the legacy version in TLSv1.3 ClientHello by John Jiang
3
by John Jiang
Re: RFR: 8248862: Implement Enhanced Pseudo-Random Number Generators [v25] by Jim Laskey-3
2
by Jim Laskey-3
Re: RFR: 8253795: Implementation of JEP 391: macOS/AArch64 Port [v21] by Andrew Haley-2
0
by Andrew Haley-2
RFR: 8259535: ECDSA SignatureValue do not always have the specified length by Weijun Wang-2
4
by Weijun Wang-2
Re: RFR: 8248862: Implement Enhanced Pseudo-Random Number Generators by Jim Laskey-3
1
by Rémi Forax
RFR: 8262389: Use permitted_enctypes if default_tkt_enctypes or default_tgs_enctypes is not present by Weijun Wang-2
0
by Weijun Wang-2
RFR: 8139348: Deprecate 3DES and RC4 in Kerberos by Weijun Wang-2
10
by Weijun Wang-2
RFR: 8259709: Disable SHA-1 XML Signatures by Sean Mullan-2
7
by Weijun Wang-2
RFR: 8258855: Two tests sun/security/krb5/auto/ReplayCacheTestProc.java and ReplayCacheTestProcWithMD5.java failed on OL8.3 by Fernando Guallini-2
8
by Fernando Guallini-2
RFR: 8261502: ECDHKeyAgreement: Allows alternate ECPrivateKey impl and revised exception handling by Anthony Scarpino-2
1
by Anthony Scarpino-2
Re: RFR: 8248862: Implement Enhanced Pseudo-Random Number Generators [v24] by Jim Laskey-3
0
by Jim Laskey-3
RFR: 8255255: Update Apache Santuario (XML Signature) to version 2.2.0 by Weijun Wang-2
12
by Weijun Wang-2
RFR: 8254717: isAssignableFrom checks in KeyFactorySpi.engineGetKeySpec appear to be backwards by Ziyi Luo
2
by Ziyi Luo
RFR: 8210373: Deadlock in libj2gss.so when loading "j2gss" and "net" libraries in parallel. by Weijun Wang-2
5
by Weijun Wang-2
RFR: 8255867: SignatureScheme JSSE property does not preserve ordering in handshake messages by Jamil Nimeh-2
7
by Jamil Nimeh-2
RFR: 8211227: Inconsistent TLS protocol version in debug output by Evan Whelan-2
11
by Evan Whelan-2
RFR: 8258915: Temporary buffer cleanup by Weijun Wang-2
49
by Weijun Wang-2
Re: RFR: 8248862: Implement Enhanced Pseudo-Random Number Generators [v21] by Jim Laskey-3
2
by Jim Laskey-3
Re: RFR: 8248862: Implement Enhanced Pseudo-Random Number Generators [v20] by Jim Laskey-3
0
by Jim Laskey-3
RFR: 8148937: (str) Adapt StringJoiner for Compact Strings by Сергей Цыпанов-2
1
by Claes Redestad-2
[11u] RFR: 8256421: Add 2 HARICA roots to cacerts truststore by Doerr, Martin
2
by Doerr, Martin
Re: RFR: 8080272 Refactor I/O stream copying to use InputStream.transferTo/readAllBytes and Files.copy by Andrey Turbanov-2
0
by Andrey Turbanov-2
Re: RFR: 8248862: Implement Enhanced Pseudo-Random Number Generators [v17] by Jim Laskey-3
5
by Jim Laskey-3
Re: RFR: 8248862: Implement Enhanced Pseudo-Random Number Generators [v18] by Jim Laskey-3
0
by Jim Laskey-3
Re: RFR: 8261880: Change nested classes in java.base to static nested classes where possible [v2] by Claes Redestad-2
0
by Claes Redestad-2
RFR: 8257497: Key identifier compliance issue by Hai-May Chao-2
24
by Hai-May Chao-2
Re: RFR: JDK-8261791:(sctp) handleSendFailed in SctpChannelImpl.c potential leaks by Matthias Baesken
1
by Matthias Baesken
1234 ... 274