We have a customer who wants to restrict ssl connections to only use TLSv1. Unfortunately, our lower end platform still runs a java 1.3 equivalent with JSSE 1.0.3_04 which doesn't have setEnabledProcotols(...) on the SSLSocket and SSLServerSocket classes. Is there another way to enforce this type of restriction?
Unfortunately our code is both client and server. The hardware limits us currently to supporting a 1.3 vm. Our new products support newer vms but we still have to support our legacy hardware. It's typical that embedded platforms trail the mainstream.