src/share/lib/security/java.security-aix

Print this page




 483 # protocol version negotiation, cipher suites selection, peer authentication
 484 # and key exchange mechanisms.
 485 #
 486 # Disabled algorithms will not be negotiated for SSL/TLS connections, even
 487 # if they are enabled explicitly in an application.
 488 #
 489 # For PKI-based peer authentication and key exchange mechanisms, this list
 490 # of disabled algorithms will also be checked during certification path
 491 # building and validation, including algorithms used in certificates, as
 492 # well as revocation information such as CRLs and signed OCSP Responses.
 493 # This is in addition to the jdk.certpath.disabledAlgorithms property above.
 494 #
 495 # See the specification of "jdk.certpath.disabledAlgorithms" for the
 496 # syntax of the disabled algorithm string.
 497 #
 498 # Note: This property is currently used by Oracle's JSSE implementation.
 499 # It is not guaranteed to be examined and used by other implementations.
 500 #
 501 # Example:
 502 #   jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
 503 jdk.tls.disabledAlgorithms=SSLv3


 483 # protocol version negotiation, cipher suites selection, peer authentication
 484 # and key exchange mechanisms.
 485 #
 486 # Disabled algorithms will not be negotiated for SSL/TLS connections, even
 487 # if they are enabled explicitly in an application.
 488 #
 489 # For PKI-based peer authentication and key exchange mechanisms, this list
 490 # of disabled algorithms will also be checked during certification path
 491 # building and validation, including algorithms used in certificates, as
 492 # well as revocation information such as CRLs and signed OCSP Responses.
 493 # This is in addition to the jdk.certpath.disabledAlgorithms property above.
 494 #
 495 # See the specification of "jdk.certpath.disabledAlgorithms" for the
 496 # syntax of the disabled algorithm string.
 497 #
 498 # Note: This property is currently used by Oracle's JSSE implementation.
 499 # It is not guaranteed to be examined and used by other implementations.
 500 #
 501 # Example:
 502 #   jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
 503 jdk.tls.disabledAlgorithms=SSLv3, RC4