You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@netbeans.apache.org by Geertjan Wielenga <ge...@googlemail.com> on 2017/09/13 18:54:30 UTC

Cryptography audit of incubator-netbeans

Hi all, especially mentors,

We've started a cryptography audit, with first results here:

https://lists.apache.org/thread.html/0f257994eb16bcf0ee2ffd7dc63baa9ae0799dac40ca30dab35bff47@%3Cdev.netbeans.apache.org%3E

Questions -- what is the next step?

Thanks,

Gj

Re: Cryptography audit of incubator-netbeans

Posted by Peter Hansson <pe...@yahoo.com.INVALID>.

Side note (but related):


In case you've missed it: the Oracle JDK people are in the process of removing all crypto strength restrictions completely. Apparently not important anymore as it was in the past. This change in the Oracle JDK distribution will be backported to Java8, Java7 and Java6.
See https://bugs.openjdk.java.net/browse/JDK-8170157



So at least the Oracle lawyers has changed the view on things.  Great for developers.




On Wednesday, September 13, 2017 8:54 PM, Geertjan Wielenga <ge...@googlemail.com> wrote:



Hi all, especially mentors,


We've started a cryptography audit, with first results here:


https://lists.apache.org/thread.html/0f257994eb16bcf0ee2ffd7dc63baa9ae0799dac40ca30dab35bff47@%3Cdev.netbeans.apache.org%3E


Questions -- what is the next step?


Thanks,


Gj