Skip to Main Content

Java Security

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Interested in getting your voice heard by members of the Developer Marketing team at Oracle? Check out this post for AppDev or this post for AI focus group information.

how to restrict the EC curves using configuration

3322108Sep 29 2016 — edited Sep 29 2016

I am using JDK 1.8 for tomcat 8 and I have these ciphers (TLS 1.2) in the ciphers list:

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,

TLS_RSA_WITH_AES_256_CBC_SHA256,

TLS_RSA_WITH_AES_256_CBC_SHA,

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,

TLS_RSA_WITH_AES_128_CBC_SHA256,

TLS_RSA_WITH_AES_128_CBC_SHA

How do I restrict the server not to accept weaker curve like - secp160k1 ?  or server to accept only stronger curve implementation?

does java.security file has any configuration for this?

Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Oct 27 2016
Added on Sep 29 2016
0 comments
427 views