Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-4351

Support for server cipher suite preference

    XMLWordPrintable

Details

    Description

      Please expose config option in subsystem config to enable server cipher suite preference. The relevant API call is SSLParameters.setUseCipherSuitesOrder(boolean) in Java 8.

      We are busy looking at the security of our web services exposed by Wildfly 8.2.0.Final when we came across these posts:
      http://blog.ivanristic.com/2014/03/ssl-tls-improvements-in-java-8.html
      http://docs.oracle.com/javase/8/docs/technotes/guides/security/jsse/JSSERefGuide.html#cipher_suite_preference

      App Server: WildFly 8.2.0.Final
      Java: Java 8 Update 31
      OS: Linux / gentoo

      Attachments

        Issue Links

          Activity

            People

              darran.lofthouse@redhat.com Darran Lofthouse
              nicoschl@gmail.com Nico Schlebusch (Inactive)
              Votes:
              2 Vote for this issue
              Watchers:
              9 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: