New JEP Draft for review: "Disable SHA-1 Certificates"

Tue, 05 Apr 2016 05:30:00 -0700

We are seeking feedback on a new JEP Draft ("Disable SHA-1 Certificates) that is initially targeted to JDK 9: 

  http://openjdk.java.net/jeps/8149555
The goal of the JEP is to improve the default security configuration of the JDK by disabling X.509 certificate chains with SHA-1 based signatures.
Backports to earlier releases will be targeted at a later date after more communication, discussion and testing. 

Thanks,
Sean

Reply via email to