将密码套件TLS_DHE_RSA_WITH_AES_256_GCM_SHA384添加到Java 7 [英] Add cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 to Java 7

查看:1038
本文介绍了将密码套件TLS_DHE_RSA_WITH_AES_256_GCM_SHA384添加到Java 7的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

我想在Java 7中将 TLSv1.2 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 一起使用。

I'd like to use TLSv1.2 with TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 in Java 7.

我在VM参数中添加了 -Ddeployment.security.TLSv1.2 = true ,我想知道如何添加

I've added -Ddeployment.security.TLSv1.2=true to the VM arguments and I'd like to know how to add the cipher suite mentioned above.

推荐答案

@ dave_thompson_085


Java 7 JSSE(SSL / TLS提供程序)未实现GCM密码套件,只有Java 8可以。像BouncyCastle这样的第三方提供商可能会。还请记住,只有安装了JCE无限强度选件,所有Oracle / Sun JRE都支持AES-256套件(通常支持128位以上的对称加密)。

Java 7 JSSE (the SSL/TLS provider) does not implement GCM ciphersuites, only Java 8 does. A thirdparty provider like BouncyCastle might. Also remember all Oracle/Sun JREs support AES-256 suites (and more-than-128-bit symmetric encryption generally) only if the JCE Unlimited Strength option is installed.






我说(Java8 OR MAYBE BC)和(UnlimitedStrength OR NOT Oracle-或更确切地说是openjdk)。我以为我记得BCprov做SSL / TLS,但是检查它只是轻量级的API,所以除非您重写代码(以及任何相关的库),否则您需要(Java8以获取GCM)和(UnlimitedStrength或openjdk以获取AES256)。

I said (Java8 OR MAYBE BC) AND (UnlimitedStrength OR NOT Oracle -- or more exactly openjdk). I thought I recalled BCprov doing SSL/TLS but on checking it's only the lightweight API, so unless you rewrite your code (and any involved libraries) you need (Java8 to get GCM) AND (UnlimitedStrength OR openjdk to get AES256).

这篇关于将密码套件TLS_DHE_RSA_WITH_AES_256_GCM_SHA384添加到Java 7的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!

查看全文
相关文章
Java开发最新文章
热门教程
热门工具
登录 关闭
扫码关注1秒登录
发送“验证码”获取 | 15天全站免登陆