Forum Stats

  • 3,827,130 Users
  • 2,260,743 Discussions
  • 7,897,180 Comments

Discussions

how to restrict the EC curves using configuration

3322108
3322108 Member Posts: 1

I am using JDK 1.8 for tomcat 8 and I have these ciphers (TLS 1.2) in the ciphers list:

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,

TLS_RSA_WITH_AES_256_CBC_SHA256,

TLS_RSA_WITH_AES_256_CBC_SHA,

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,

TLS_RSA_WITH_AES_128_CBC_SHA256,

TLS_RSA_WITH_AES_128_CBC_SHA

How do I restrict the server not to accept weaker curve like - secp160k1 ?  or server to accept only stronger curve implementation?

does java.security file has any configuration for this?

This discussion has been closed.