RFR 8057810: New defaults for DSA keys in jarsigner and keytool

Hi All Please review the code change at http://cr.openjdk.java.net/~weijun/8057810/webrev.00/ Now DSA keys use 2048 bit key size and SHA256withDSA as defaults for keytool and jarsigner. A new test added. Several existing tests updated since the new defaults are not supported by NSS. Thank

Re: CFV: New Security Group Member: Anthony Scarpino

Vote: yes --Sean On 11/03/2014 12:28 PM, Sean Mullan wrote: I hereby nominate Anthony Scarpino to Membership in the Security Group. Anthony is a member of the Java Security Libraries team at Oracle and has been an active contributor to the OpenJDK Security Group for approximately two years. An

Re: RFR 8057810: New defaults for DSA keys in jarsigner and keytool

Your fix looks fine. Thanks. On 4 Nov 2014, at 10:00, Wang Weijun wrote: > Hi All > > Please review the code change at > > http://cr.openjdk.java.net/~weijun/8057810/webrev.00/ > > Now DSA keys use 2048 bit key size and SHA256withDSA as defaults for keytool > and jarsigner. > > A new test

Re: CFV: New Security Group Member: Anthony Scarpino

Vote: yes On 3 Nov 2014, at 17:28, Sean Mullan wrote: > I hereby nominate Anthony Scarpino to Membership in the Security Group. > > Anthony is a member of the Java Security Libraries team at Oracle and has > been an active contributor to the OpenJDK Security Group for approximately > two yea

Re: RFR 8038089: TLS optional support for Kerberos cipher suites needs to be re-examine

[Adding Roland and Viktor to the cc list. I'm not quoting anything, but it's roughly this: there's interest in implementing RFC2712, which is Kerberos in TLS. Hank is inviting me to state my opinion; see below.] RFC2712 is to be burned. Please do not implement. We should either add a different

Re: RFR 8038089: TLS optional support for Kerberos cipher suites needs to be re-examine

On Tue, Oct 21, 2014 at 04:09:59PM -0500, Nico Williams wrote: > [Adding Roland and Viktor to the cc list. I'm not quoting anything, > but it's roughly this: there's interest in implementing RFC2712, which > is Kerberos in TLS. Hank is inviting me to state my opinion; see > below.] > > RFC2712

Re: CFV: New Security Group Member: Anthony Scarpino

Vote: Yes Jason On 11/03/2014 09:28 AM, Sean Mullan wrote: I hereby nominate Anthony Scarpino to Membership in the Security Group. Anthony is a member of the Java Security Libraries team at Oracle and has been an active contributor to the OpenJDK Security Group for approximately two years. Ant

Re: CFV: New Security Group Member: Anthony Scarpino

Vote: Yes On 11/4/2014 11:44 AM, Jason Uh wrote: Vote: Yes Jason On 11/03/2014 09:28 AM, Sean Mullan wrote: I hereby nominate Anthony Scarpino to Membership in the Security Group. Anthony is a member of the Java Security Libraries team at Oracle and has been an active contributor to the Open