Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-10474

FIPS mode (PKCS11), not possible to configure HTTP/2

XMLWordPrintable

      I don't see way how to configure HTTP/2 in FIPS mode (PKCS11), because per HTTP/2 RFC [1] TLSv1.2 is mandatory for HTTP/2.

      However in FIPS mode we are stucked with:

      • TLSv1.1 in case of OpenJDK/Oracle java [2]
      • TLSv1 in case of IBM java [3]

      [1] https://tools.ietf.org/html/rfc7540#section-9.2
      [2] https://bugs.openjdk.java.net/browse/JDK-8029661
      [3] https://www-01.ibm.com/support/knowledgecenter/SSYKE2_8.0.0/com.ibm.java.security.component.80.doc/security-component/jsse2Docs/runfips.html

              sgilda_jira Sande Gilda (Inactive)
              mchoma@redhat.com Martin Choma
              Martin Choma Martin Choma
              Martin Choma Martin Choma
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

                Created:
                Updated:
                Resolved: