OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
1234 ... 240
Topics (8366)
Replies Last Post Views
sunrsasign.jar still searched in java 8? by Bernd Eckenfels-4
5
by David Holmes
[PATCH]: Support for brainpool curves from CurveDB in SunEC by Tobias Wagner
2
by Adam Petcher
[11] RFR: 8194486: Several krb5 tests failed in Mac. by Sibabrata Sahoo
5
by Weijun Wang
Update mechanism for the upcoming trust store by Fotis Loukos-2
0
by Fotis Loukos-2
Code Review Request, JDK-8185576 : New handshake implementation by Xuelei Fan-2
4
by Adam Petcher
RFR [10]: 8194307: KeyStore#getInstance with custom LoadStoreParameter succeeds with invalid password by Sean Mullan
2
by Sean Mullan
RFR JDK-8195667: ProblemList PKCS11 tests Secmod/AddTrustedCert.java and tls/TestKeyMaterial.java due to JDK-8180837 by sha.jiang
1
by Weijun Wang
contribute to the OpenJDK security group by Leo Grove
2
by Leo Grove
RFR JDK-8194864: Outputs more details for PKCS11 tests if the NSS lib version cannot be determined by sha.jiang
1
by Xuelei Fan-2
JCEKS Keystore problem by Brendan McKenna
2
by Brendan McKenna
RFR: 8194960: Add a test for trust manager and cacerts keystore sanity by Martin Buchholz-3
2
by Martin Buchholz-3
[PATCH]: Support for brainpool curves from CurveDB in SunEC by Tobias Wagner
1
by Adam Petcher
RFR 8014628: Support AES Encryption with HMAC-SHA2 for Kerberos 5 by Weijun Wang
15
by Sean Mullan
RFR 8195119: Fine-tune output text in keytool by Weijun Wang
1
by Sean Mullan
[PATCH] Crypto EC - avoids possible memset compiler optimisation by DEV Nexen
3
by Christopher Schultz
[10] RFR 8194959: Correct test tag to move bugid from @test to @bug by Amy Lu-2
3
by Amy Lu-2
About signature algorithm and provider name in SignedObject spec by Weijun Wang
1
by Sean Mullan
RFR JDK-8194257: javax/net/ssl/compatibility/Compatibility.java should be updated for JDK 6 after JDK-8174748 by sha.jiang
1
by Xuelei Fan-2
[10] RFR 8194666: ProblemList update for bugid associated with PreferredKey.java, ConcurrentHashMapTest and SSLSocketParametersTest.sh by Amy Lu-2
1
by Xuelei Fan-2
Bug in SunNativeProvider by Jan Kalina
5
by Valerie Peng
[PATCH]: Support for brainpool curves from CurveDB in SunEC by Tobias Wagner
1
by Adam Petcher
RFR JDK-8189760: sun/security/ssl/CertPathRestrictions/TLSRestrictions.java failed with unexpected Exception intermittently by sha.jiang
1
by Xuelei Fan-2
RFR 8191438: jarsigner should print when a timestamp will expire by Weijun Wang
0
by Weijun Wang
API review for X25519/X448 by Adam Petcher
2
by Adam Petcher
[8u-dev] Request to Review and for Approval to Backport 8192987 : keytool should remember real storetype if it is not provided by Ivan Gerasimov
2
by Seán Coffey
[11] CSR RFR 8193916: Remove deprecated javax.security.auth.Policy API by Weijun Wang
1
by Sean Mullan
JEP 324: Key Agreement with Curve25519 and Curve448 by mark.reinhold
2
by Adam Petcher
Need help with porting stuff out of classDepth by Fridrich Strba
1
by Alan Bateman
[PATCH]: Support for brainpool curves from CurveDB in SunEC by Tobias Wagner
3
by Adam Petcher
Java 1.3 and JSSE by Elango
2
by Thomas Lußnig-3
1st round RFR 8191438: jarsigner should print when a timestamp will expire by Weijun Wang
4
by Weijun Wang
[8u-dev] Request to Review and for Approval to Backport : 8193156: Need to backout fixes for JDK-8058547, JDK-8055753, JDK-8085903 by Ivan Gerasimov
3
by Ivan Gerasimov
RFR 8192988: keytool should support -storepasswd for pkcs12 keystores by Weijun Wang
2
by Weijun Wang
RFR 8165996: PKCS11 using NSS throws an error regarding secmod.db when NSS uses sqlite by Martin Balao
6
by Weijun Wang
Exploring an alternative AccessController implementation by David Lloyd-2
0
by David Lloyd-2
1234 ... 240