Vele verbeteringen op gebied van beveiliging zodat Java zijn koppositie als veilige programmeertaal weet te behouden
Op een rijtje:
– TLS 1.1 and TLS 1.2 Enabled by Default
– Limited doPrivileged
– Stronger Algorithms for Password-Based Encryption
– SSL/TLS Server Name Indication (SNI) Extension Support in JSSE Server
– Support AEAD algorithms
– KeyStore Enhancements
– SHA-224 Message Digests
– Enhanced Support for NSA Suite B Cryptography
– Better Support for High Entropy Random Number Generation
– New PKIXRevocationChecker Class
– 64-bit PKCS11 for Windows
– New rcache Types in Kerberos 5 Replay Caching
– Weak Encryption Disabled by Default
– Unbound SASL for the GSS-API/Kerberos 5 mechanism
– SASL service for multiple host names
– JNI bridge to native JGSS on Mac OS X
– Support stronger ephemeral DH keys in the SunJSSE provider
– Support cipher suites preference customization in JSSE