NIO does support them according to the java documentation. These ciphers have been implemented in the JSSE provider. I have no problem making a connection to Tomcat via a Java program using a HttpsConnection and are getting the highest cipher (TLS_ECDHE_RSA_WITH_ AES_256_GCM_SHA384).
2014-05-23 10:00 GMT+02:00 Igor Cicimov <icici...@gmail.com>: > On 23/05/2014 5:43 PM, "Sverre Moe" <sverre....@gmail.com> wrote: > > > > I am using the following ciphers in Tomcat: > > > > ciphers="TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA" > > > > Somehow Chromium uses the last in that list. That is > > TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA > > Though it should support all these ciphers. Is there an ordering I could > > set so that i picks the first one? > > I think thats supported in APR only but not in BIO/NIO. But doublecheck > that in the Connector docs please. >