Yes, I know that.
For the reasons I have given, I would like to request to remove brainpool 512
from that list for all users.
There is no good reason to disable that cipher on JDK 8. It is not insecure,
that has been debunked by the BSI.
Any chance for this to happen?
- Ben
On 13.12.22,
Hi everyone!
I just stumbled over “Disable weak named curves”, e.g.
• https://bugs.openjdk.org/browse/JDK-8235540
•
http://cr.openjdk.java.net/~alexsch/sercher/8233228/webrev.00/src/share/lib/security/java.security-aix.udiff.html
Interestingly, brainpoolP512r1 is on that list.
Just a few
Hi Xuelei and Sean,
We use/see mostly brainpoolP512r1. But it is not just us!
> , although I will note that the IANA registry
>still lists them as not recommended for TLS [1].
I agree that brainpoolP512r1 are not particularly interesting when it comes to
TLS,
but we still see server
Hello everyone!
To our surprise, brainpool EC have been deprecated with Java 14+ [1].
However, JDK-8234924 [1] does not add any information on WHY they would have
been deprecated.
In fact, neither NIST (USA) nor BSI (Germany) list them as deprecated.
On the contrary, both institutions list them
