Reputation: 29
Cipher suite not supported by Java 1.7
One of the external service which we use require one of the below (GCM) cipher suites along with TLSv1.2 or above. I was able to enable TLSv1.2 but the ciphers (listed below) are not supported by Java 1.7. I tried adding the current JCE7 policy as well. We cannot upgrade to Java 1.8 for the moment. Any support on how to deal with this issue?
ECDHE-ECDSA-AES128-GCM-SHA256
ECDHE-RSA-AES128-GCM-SHA256
ECDHE-ECDSA-AES256-GCM-SHA384
ECDHE-RSA-AES256-GCM-SHA384
DHE-RSA-AES128-GCM-SHA256
DHE-RSA-AES256-GCM-SHA384
Upvotes: 2
Views: 6081
Answers (1)
Reputation: 5459
You can try to use additional Security Providers to add the missing ciphers. BouncyCastle for example runs on Java 1.7 and comes with the ciphers you mentioned. There is a question with an answer concerning that here on StackOverflow, so you might try that out.
Priorities should be changed in order to get the migration to Java 8 (better Java 11) done as soon as possible. Java 7 is OOL (out of line) for quite some time now and Java 8 still is but won't be for much longer.
Upvotes: 3
Related Questions
- JDK7 SSL conenction Issue Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
- [Unsupported ciphersuite][Java SSLSocket]
- java version "1.7.0_171" to support ciphersuite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
- Java - no cipher suites in common
- javax.net.ssl.SSLHandshakeException: no cipher suites in common no cipher suites in common
- Add cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 to Java 7
- Java 7 does not support ciphers which should be supported
- What cipher suites come with Java jdk1.7.0_03, and / or how do I provision my RMI installation with them?
- unsupported SSL ciphersuite
- Enabled ciphers on Ubuntu OpenJDK 7