Java 6 extension with TLSv1.1 support

Question

Java 6 extension with TLSv1.1 support

My utility is deployed to Tomcat 6 with Java 6, I want to restrict the use of SSL to TLSv1.1 only . According to the Java 6 documentation, JCE does not support TLSv1.1 while Java 7 is running.

Updating my version of Java is unacceptable. Are there any providers that implement the TLSv1.1 protocol that I can integrate into my java?

Since this is a production system, I am looking for a quick and safe fix. I thought in front of the application server with the Apache web server on the same host (which supports TLSv1.1 via openssl) and uses it as a proxy server. Unfortunately, my physical resources are low.

Any other ideas are welcome. Thank you

+4

java ssl cryptography tomcat

Maxim Kirilov Apr 27 '14 at 5:02

source share

1 answer

Maarten bodewes · Answer 1 · 2014-04-27T11:43:40+0000

Run it using a system that performs SSL and receives security updates. You can start apache using a connector - if you still trust this - or configure a Java application (a newer version of Tomcat?) To act as an SSL proxy server (connecting to port 80 of your server, if this is acceptable for you).

Java 6 extension with TLSv1.1 support

More articles: