Maxim Kirilov
Maxim Kirilov

Reputation: 2739

Extend Java 6 with TLSv1.1 support

My apllication is deployed on Tomcat 6 with Java 6, I want to restrict the SSL protocol to use only TLSv1.1. According to Java 6 documentation JCE isn't supporting TLSv1.1 while Java 7 does.

Upgrade my Java version isn't acceptable. There is any providers that implements TLSv1.1 protocol that I can integrate to my java?

Since it's production system I am looking for quick and safe fix. I thought to front end my application server with apache web server at the same host(which supports TLSv1.1 through openssl) and use him as a proxy server. Unfortunately my physical resources are low.

Any other ideas are welcome. Thanks.

Upvotes: 4

Views: 1231

Answers (1)

Maarten Bodewes
Maarten Bodewes

Reputation: 93948

Front it with a system that does the SSL and does get security updates. You can run apache using the connector - if you still trust this - or setup a Java application (a newer version of Tomcat?) to act as an SSL proxy (connecting to port 80 of your server, if this is acceptable to you).

Upvotes: 1

Related Questions