Lightrun
question-mark
Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

TLS Support

See original GitHub issue

How to use this library for TLS (old name: SSL) operations?

Right now, I use this library for AES GCM like this: Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding", AmazonCorrettoCryptoProvider.INSTANCE); and it works perfectly.

But when I try to use it for TLS like this: SSLContext.getInstance("TLSv1.3", AmazonCorrettoCryptoProvider.INSTANCE);, it throws the following exception.

Exception in thread "main" java.security.NoSuchAlgorithmException: no such algorithm: TLSv1.3 for provider AmazonCorrettoCryptoProvider
	at java.base/sun.security.jca.GetInstance.getService(GetInstance.java:101)
	at java.base/sun.security.jca.GetInstance.getInstance(GetInstance.java:218)
	at java.base/javax.net.ssl.SSLContext.getInstance(SSLContext.java:251)
	at GG.main(GG.java:13)

It seems Corretto Crypto Provider does not support TLS yet. Do we have plans to add it?

Issue Analytics

  • State:closed
  • Created 3 years ago
  • Comments:10 (2 by maintainers)

github_iconTop GitHub Comments

1reaction
SalusaSeconduscommented, Apr 10, 2020

We do not support the OpensSSL FIPS Object Module. It only backs OpenSSL 1.0.2 which is sufficiently old that we do not have plans to support it.

We will re-evaluate our support for the OpenSSL FIPS Object Module once OpenSSL 3.x is released and we can look at migrating to it.

If you need FIPS cryptography for Java, you may want to look at BouncyCastle FIPS. (This is not an official endorsement.)

1reaction
SalusaSeconduscommented, Apr 10, 2020

There are no current plans to provide TLS through the Amazon Corretto Crypto Provider.

If you install it at the highest priority (as in our Readme), then the default implementation of TLS provided by Java will use ACCP for its underlying cryptographic operations.

Please let us know if you have any other questions.

Read more comments on GitHub >

github_iconTop Results From Across the Web

Transport Layer Security
Transport Layer Security (TLS) is a cryptographic protocol designed to provide communications security over a computer network. The protocol is widely used ...
Read more >
What Is TLS 1.2, and Why Should You (Still) Care?
TLS 1.2 was released in 2008, offering improved security, and was designed for both high performance and improved reliability. To accomplish ...
Read more >
Enable Transport Layer Security (TLS) 1.2 overview
To correctly enable Configuration Manager to support TLS 1.2 for all secure communications, you must enable TLS 1.2 for all required components.
Read more >
What is Transport Layer Security? | TLS protocol
Transport Layer Security, or TLS, is a widely adopted security protocol designed to facilitate privacy and data security for communications over the Internet....
Read more >
What is TLS & How Does it Work? | ISOC Internet Society
By enabling client and server applications to support TLS, it ensures that data transmitted between them is encrypted with secure algorithms and not...
Read more >

github_iconTop Related Medium Post

No results found

github_iconTop Related StackOverflow Question

No results found

github_iconTroubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free

github_iconTop Related Reddit Thread

No results found

github_iconTop Related Hackernoon Post

No results found

github_iconTop Related Tweet

No results found

github_iconTop Related Dev.to Post

No results found

github_iconTop Related Hashnode Post

No results found
Previous page

Encryption using parallel stream is slower than default provider

Next page

Support for KeyFactory Interfaces