OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
1234567 ... 237
Topics (8289)
Replies Last Post Views
RFR 8179369: src/java.security.jgss/share/classes/org/ietf/jgss/package.html should be HTML5-friendly by Weijun Wang
1
by Sean Mullan
RFR: 8179370: Replace use of <tt>, <center> and <font> tags in java.base by Jonathan Gibbons
8
by Brad R. Wetmore
RFR: Remove map synchronization from SignatureAndHashAlgorithm by Steven Davidovitz
3
by Sean Mullan
NTNumericCredential of the NTLoginModule JAAS module by Bernd Eckenfels-4
0
by Bernd Eckenfels-4
Code Review Request, JDK-8140436, Support the FFDHE TLS extension by Xuelei Fan-2
4
by Jamil Nimeh
Short AES GCM Tags? by Mike Duigou-2
2
by Bernd Eckenfels-4
RFR 8178795: krb5 Basic.java test should be basic by Weijun Wang
1
by Xuelei Fan-2
[9] RFR:8178083 Remove intermittent key from java/security/SignedObject/Chain.java by Tim Du
1
by Xuelei Fan-2
RFR 8177784 Use CounterMode intrinsic for AES/GCM by Anthony Scarpino
8
by Sean Mullan
RFR[8u] JDK-8157035: Use stronger algorithms and keys for JSSE testing by Prasadrao Koppula
1
by Seán Coffey
JGSS-API supporting SSPI on Windows by Chan, Sunny
3
by Weijun Wang
[10] RFR: 8161973: PKIXRevocationChecker.getSoftFailExceptions() not working by Sean Mullan
1
by Xuelei Fan-2
RFR[9] 8165367: Additional tests for JEP 288: Disable SHA-1 Certificates by sha.jiang
1
by Anthony Scarpino
RFR 8177291: [doc] weak algorithms and crypto policy in JGSS docs by Weijun Wang
3
by Sean Mullan
RFR: 3 security-libs release notes on keytool/krb5/etc by Weijun Wang
10
by Sean Mullan
[9] RFR 8177969: Faster FilePermission::implies by avoiding the use of Path::relativize by Weijun Wang
0
by Weijun Wang
[10] RFR: 8175029: StackOverflowError in X509CRL and X509Certificate.verify(PublicKey, Provider) by Sean Mullan
4
by Vincent Ryan
[9] RFR 8177569: keytool should not warn if signature algorithm used in cacerts is weak by Weijun Wang
4
by Sean Mullan
JDK 9 RFR of JDK-8177638: com/sun/jarsigner, jdk/internal/loader (and more) are missed in TEST.group by Amy Lu-2
3
by Amy Lu-2
RFR of 8177683: Suppress lint removal warnings in jdk.security and jdk.policytool by Joseph D. Darcy
3
by Weijun Wang
[PATCH] 8005819: Support cross-realm MSSFU by richard
1
by Weijun Wang
JDK-8016345 (DNSName does not accept names with leading numbers) will-not-fix? Why? by Thomas Stüfe-2
6
by Thomas Lußnig-3
[10] RFR 8177085: Accept including .conf files in krb5.conf's includedir by Weijun Wang
8
by Weijun Wang
RFR 8176536: Backport weak algorithms checking by Anthony Scarpino
4
by Sean Mullan
RFR(s): 8177324: Some javax/security/ tests don't have correct module dependencies by Sergei Kovalev
1
by Weijun Wang
Release Note Review JDK-8028518: Increase the priorities of GCM cipher suites by Xuelei Fan-2
3
by Jamil Nimeh
Review: Release note for JDK-8042967 by Jamil Nimeh
2
by Jamil Nimeh
RFR: Two krb5 release notes by Weijun Wang
2
by Weijun Wang
Generate Keypairs with strong prng provider (SHA1PRNG) by Bernd Eckenfels-4
4
by Bernd Eckenfels-4
[10] RFR 8175251: Failed to load RSA private key from pkcs12 by Valerie Peng
4
by Sean Mullan
RFR 8176296: Test sun/security/krb5/auto/Basic.java faling after adding module declaration into TEST.properties. by Weijun Wang
6
by Valerie Peng
RFR 8176715: sun/security/krb5/auto/HttpNegotiateServer.java does not compile by Weijun Wang
2
by Sean Mullan
RFR: JDK-8176503: Disable SHA-1 TLS Server Certificates by Sean Mullan
1
by Vincent Ryan
RFR 8176542: Missing @Deprecated arguments for jdk.policytool by Weijun Wang
1
by Sean Mullan
RFR 8176350: Usage constraints don't take effect when using PKIX by Anthony Scarpino
6
by Sean Mullan
1234567 ... 237