OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
1 ... 231232233234235236237
Topics (8265)
Replies Last Post Views
[security-dev 00165]: [Fwd: Corrected Announcement: RFC 5280 on Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile] by sean.mullan
0
by sean.mullan
[security-dev 00164]: hg: jdk7/jsn/jdk: 6687919: REGRESSION : Classloader can handle any resource which is not included in classpath by christopher.hegarty
0
by christopher.hegarty
[security-dev 00163]: JSN/TL integration slot pushed back 1 week. by bradford.wetmore
0
by bradford.wetmore
[security-dev 00162]: hg: jdk7/jsn/jdk: 6695818: New regression test (KerberosTixDateTest) for Kerberos failing on (probably) all platforms. by yu-ching.peng
0
by yu-ching.peng
[security-dev 00161]: hg: jdk7/jsn/jdk: 3 new changesets by yu-ching.peng
0
by yu-ching.peng
[security-dev 00160]: hg: jdk7/jsn/jdk: 2 new changesets by sean.mullan
0
by sean.mullan
[security-dev 00159]: hg: jdk7/jsn/langtools: 4 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00158]: hg: jdk7/jsn/jdk: 16 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00157]: hg: jdk7/jsn/jaxws: Added tag jdk7-b25 for changeset 59fd8224ba2d by bradford.wetmore
0
by bradford.wetmore
[security-dev 00156]: hg: jdk7/jsn/jaxp: Added tag jdk7-b25 for changeset a3b3ba7d6034 by bradford.wetmore
0
by bradford.wetmore
[security-dev 00155]: hg: jdk7/jsn/hotspot: Added tag jdk7-b25 for changeset 7836be3e92d0 by bradford.wetmore
0
by bradford.wetmore
[security-dev 00154]: hg: jdk7/jsn/corba: 2 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00153]: hg: jdk7/jsn: 3 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00152]: hg: jdk7/jsn/jdk: 6689000: Changes in 6675606 causing regression test failures on windows-i586 by weijun.wang
0
by weijun.wang
[security-dev 00151]: No JSN integration today. by bradford.wetmore
0
by bradford.wetmore
[security-dev 00149]: hg: jdk7/jsn/jdk: 6558853: getHostAddress() on connections using IPv6 link-local addrs should have zone id by Jean-Christophe Coll...
0
by Jean-Christophe Coll...
[security-dev 00148]: hg: jdk7/jsn/langtools: 12 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00147]: hg: jdk7/jsn/jdk: 9 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00146]: hg: jdk7/jsn/jdk: 6644726: Cookie management issues by Jean-Christophe Coll...
0
by Jean-Christophe Coll...
[security-dev 00145]: hg: jdk7/jsn/jdk: 6687282: URLConnection for HTTPS connection through Proxy w/ Digest Authentication gives 400 Bad Request by christopher.hegarty
0
by christopher.hegarty
[security-dev 00144]: hg: jdk7/jsn/jdk: 6659779: HttpURLConnections logger should log tunnel requests by christopher.hegarty
0
by christopher.hegarty
[security-dev 00143]: hg: jdk7/jsn/jdk: 2 new changesets by sean.mullan
0
by sean.mullan
[security-dev 00136]: Re: JSR105 - Other SignatureMethod implementation ? by jkt-2
2
by jkt-2
[security-dev 00141]: hg: jdk7/jsn/jdk: 6571950: SSLSocket(raddr, rport, laddr, lport) allows null as laddr that spec doesn't reflect by Xuelei Fan
0
by Xuelei Fan
[security-dev 00140]: hg: jdk7/jsn/jdk: 6546671: (spec)javax.net.ssl.TrustManagerFactory.getInstance() throws undocumented NP; ... by Xuelei Fan
0
by Xuelei Fan
[security-dev 00139]: hg: jdk7/jsn/jdk: 6546639: (spec)javax.net.ssl.SSLContext.getInstance(null) throws undocumented NPE by Xuelei Fan
0
by Xuelei Fan
[security-dev 00137]: hg: jdk7/jsn/jdk: 6675606: javax.security.auth.login.Configuration does not recognize path with spaces by weijun.wang
0
by weijun.wang
[security-dev 00135]: hg: jdk7/jsn/jdk: 6683078: Update JCE framework and provider builds to work on read-only filesystems; ... by bradford.wetmore
0
by bradford.wetmore
[security-dev 00134]: hg: jdk7/jsn/jdk: 6668231: Presence of a critical subjectAltName causes JSSE's SunX509 to fail trusted checks by Xuelei Fan
0
by Xuelei Fan
[security-dev 00133]: hg: jdk7/jsn/jdk: 3 new changesets by yu-ching.peng
0
by yu-ching.peng
[security-dev 00132]: hg: jdk7/jsn/jdk: 6469580: 1.5.0_08 JVM crashes in SignatureHandlerLibrary::add on Fujitsu Primepower platform by bradford.wetmore
0
by bradford.wetmore
[security-dev 00131]: JSN Integration deadline at 3pm by bradford.wetmore
0
by bradford.wetmore
[security-dev 00130]: hg: jdk7/jsn/jdk: 6681652: Two new regression test failures in pkcs11 code by yu-ching.peng
0
by yu-ching.peng
[security-dev 00129]: hg: jdk7/jsn/langtools: 6618930: (javac) fix test after whitespace normalization by bradford.wetmore
0
by bradford.wetmore
[security-dev 00128]: hg: jdk7/jsn/jdk: 67 new changesets by bradford.wetmore
0
by bradford.wetmore
1 ... 231232233234235236237