OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
1234567 ... 245
Topics (8553)
Replies Last Post Views
RFR: 8204250: ProblemList pkcs11 tests on windows by Rajan Halade
1
by Bradford Wetmore
[RFR]: JDK-8203182 - Release session if initialization of SunPKCS11 Signature fails by Martin Balao
3
by Valerie Peng
[8u-dev] Request for Review and Approval to Backport 8189760 : sun/security/ssl/CertPathRestrictions/TLSRestrictions.java failed with unexpected Exception intermittently by Ivan Gerasimov
2
by Ivan Gerasimov
RFR: 8191031: Remove several Symantec Root CAs by Rajan Halade
1
by Sean Mullan
RFR: ChaCha20 and ChaCha20/Poly1305 Cipher implementations by Jamil Nimeh
55
by Sean Mullan
RFR: 8189949: Remove Baltimore Cybertrust Code Signing CA by Rajan Halade
2
by Rajan Halade
RFR CSR 8203460: Update xmldsig implementation to latest version of Apache Santuario by Weijun Wang
6
by Sean Mullan
RFR 8072996: Deprecate stream-based GSSContext methods by Weijun Wang
5
by Sean Mullan
JDK-8180819 No installed provider supports this key: sun.security.pkcs.PKCS8Key by Florian Bruckner (3k...
2
by Florian Bruckner (3k...
RFR: 8203793: cacerts/VerifyCACerts.java fails with java.lang.Exception: At least one cacert test failed by Rajan Halade
1
by Claes Redestad
RFR: 8191844: Remove root secomevrootca1 by Rajan Halade
1
by Sean Mullan
RFR[11] JDK-8203686: Add JDK 11 major version to javax/net/ssl/compatibility/JdkRelease.java by sha.jiang
1
by Xue-Lei Fan
Signature from User-specified URIDereferencers NodeSetData objects is wrong by Shubham Rajput
2
by Shubham Rajput
JNLP launched legacy app needs to override jdk.tls.disabledAlgorithms by Tom Hood
4
by Tom Hood
RFR[11] JDK-8146293 "Add Support for RSA-PSS Signature Algorithm as in PKCS#1 v2.2" by Valerie Peng
27
by Valerie Peng
RFR 8201867: Kerberos keytabs with holes in certain places are parsed incorrectly by Weijun Wang
4
by Weijun Wang
RFR CSR 8202590: Customizing the generation of a PKCS12 keystore by Weijun Wang
4
by Weijun Wang
RFR (+CSR) 8201627: Kerberos sequence number issues by Weijun Wang
9
by Weijun Wang
Initial TLSv1.3 implementation Released to the Open Sandbox. by Bradford Wetmore
0
by Bradford Wetmore
RFR Update JarSigning.keystore by Weijun Wang
3
by Xue-Lei Fan
RFR JDK-8199388: Test development for ChaCha20 and Poly1305 algorithms by sha.jiang
3
by Sean Mullan
RFR for 6443578 and 6202130: UTF-8 in Manifests by Philipp Kunz
3
by Brian Burkhalter-2
[PATCH] JDK-8190917 : SSL session resumption, through handshake, in SSLEngine is broken for any protocols lesser than TLSv1.2 by Jaikiran Pai
9
by Jaikiran Pai
JEP Proposal: EdDSA Signatures by Adam Petcher
1
by Anders Rundgren
[8u-dev] 8193171 : keytool -list displays "JKS" for a PKCS12 keystore by Ivan Gerasimov
1
by Seán Coffey
RFR 8202086 : Improve performance characteristics of sun.security.util.MemoryCache by Ivan Gerasimov
0
by Ivan Gerasimov
RFR: 8202419: Avoid creating Permission constants early by Claes Redestad
5
by Mandy Chung
about JDK-8186628 by nezih yigitbasi
6
by Peter
RFR JDK-8202060: Add javax/net/ssl/DTLS/CipherSuite.java to ProblemList by Mikael Vidstedt-3
1
by Xue-Lei Fan
RFR 8200101: sun/security/krb5/auto/Renewal.java fails intermittently by Bhanu Prakash Gopula...
1
by Weijun Wang
RFR CSR 8201906: Use Mozilla Public Suffix List by Weijun Wang
0
by Weijun Wang
about JDK-8186628 by nezih yigitbasi
0
by nezih yigitbasi
RFR JDK-8029661: JDK-Support TLS v1.2 algorithm in SunPKCS11 provider by Jack Ottofaro
1
by Valerie Peng
RFR: 8200219: Develop new tests for using new elliptic curves: curve25519 and curve448 by Sibabrata Sahoo
8
by Sean Mullan
JEP Draft: Client-side GSS-API Library for Windows SSPI by Weijun Wang
1
by Sean Mullan
1234567 ... 245