OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
1234 ... 237
Topics (8283)
Replies Last Post Views
JEP for X25519/X448 key agreement by Adam Petcher
2
by Anders Rundgren
RFR 8187786: Many javax/net/ssl/DTLS tests failing by Weijun Wang
2
by Weijun Wang
Re: [RFR] 8184328: JDK8u131 socketRead0 hang at SSL read by Chris Hegarty
5
by Xuelei Fan-2
RFR 8176354: sun/security/ssl/X509KeyManager/PreferredKey.java failed with "Failed to get the preferable key aliases" error by Amanda Jiang
2
by Amanda Jiang
Re: StackOverflowError - Java 9 Build 181 by Sean Mullan
6
by Tom Hood
Re: hello, im a new contributor by Vincent Ryan
6
by Weijun Wang
RFR 8014628: Support AES Encryption with HMAC-SHA2 for Kerberos 5 by Weijun Wang
0
by Weijun Wang
RFR: 8170157, 8170245: Enable unlimited cryptographic policy by default in OracleJDK by Seán Coffey
5
by Seán Coffey
RFR 8186884: Test native KDC, Java krb5 lib, and native krb5 lib in one test by Weijun Wang
6
by Artem Smotrakov
RFR 8186831: Kerberos ignores PA-DATA with a non-null s2kparams by Weijun Wang
3
by Weijun Wang
RFR 8186931: jdk.security.jarsigner package is missing package summary by Weijun Wang
4
by Sean Mullan
[10] RFR 8186654 : Poor quality of sun.security.util.Cache.EqualByteArray.hashCode() by Ivan Gerasimov
2
by Ivan Gerasimov
RFR[10] 8186057: TLS interoperability testing between different Java versions by sha.jiang
6
by sha.jiang
Re: RFR 8148371: Remove policytool by Sean Mullan
0
by Sean Mullan
Re: RFR 8148371: Remove policytool by Leo Jiang
0
by Leo Jiang
Code Review Request: JDK-6491070 (Support for RFC 5929-Channel Bindings) by Martin Balao
8
by David M. Lloyd-3
[10] XXS RFR 8187023: Cannot read pkcs11 config file in UTF-16 environment by Ivan Gerasimov
3
by Anthony Scarpino
Fix for dealock issue in JDK's SPNEGO resulted in another deadlock by Peter Hansson
4
by Peter Hansson
Code Review Request: JDK-8148421 (Extended Master Secret TLS extension) by Martin Balao
1
by Xuelei Fan-2
Code Review Request, JDK-8179654 New JDK 9 typos in SSLEngineResult by Xuelei Fan-2
2
by Brad R. Wetmore
RFR : 8159035: com/sun/crypto/provider/Cipher/CTS/CTSMode.java test crashed due to unhandled case of cipher length value as 0 by Seán Coffey
2
by Anthony Scarpino
RFR 8186576: KerberosTicket does not properly handle renewable tickets at the end of their lifetime by Weijun Wang
4
by Weijun Wang
[10] RFR 8173181: Empty string alias in KeyStore throws StringIndexOutOfBoundsException for getEntry() by Vincent Ryan
3
by Weijun Wang
[10] RFR: JDK-8183310: java/security/modules/ModularTest.java should clean up better by Sibabrata Sahoo
8
by Weijun Wang
JCA design for RFC 7748 by Adam Petcher
39
by Michael StJohns
Re: RFR: JDK-8159544: Remove deprecated classes in com.sun.security.auth.** by Vincent Ryan
3
by Sean Mullan
CSR Review for 8159544: Remove deprecated classes in com.sun.security.auth.** by Sean Mullan
4
by Sean Mullan
RFR JDK-8179614: Test for jarsigner on verifying jars that are signed and timestamped by other JDK releases by sha.jiang
16
by sha.jiang
On 8186143: Subject Alternative Name doesn't Accept Wildcards for DNS names by Weijun Wang
0
by Weijun Wang
RFR: JDK-8186160 Fix a11y issues in java.security package by Jonathan Gibbons
5
by Brent Christian-2
RFR[10] 8185620: MSCAPI test leaves too many entries in keystore by sha.jiang
2
by Vincent Ryan
Code review request: JDK-8046295 - Support Trusted CA Indication extension by Martin Balao
15
by Xuelei Fan-2
[10] RFR 8185934: keytool shows "Signature algorithm: SHA1withECDSA, -1-bit key" by Weijun Wang
4
by Weijun Wang
Request - JavaScript Compatible Number Canonicalization by Anders Rundgren
0
by Anders Rundgren
TLS 1.3 support in JDK by Neetish Pathak
1
by Brad R. Wetmore
1234 ... 237