Explore Java 9 security enhancements through practical examples in this 40-minute Devoxx conference talk. Dive into new features like DTLS (Datagram Transport Layer Security), TLS negotiation extensions, and OCSP stapling stores. Learn about the Java module system, new process API, and Java shell while focusing on their security implications. Understand the TLS support, including the handshake process and Java Secure Socket implementation. Discover the differences between DTLS and TLS, and see a DTLS example using Bouncy Castle. Examine the Application Layer Protocol Negotiation Extension and its implementation in a banking application server. Gain insights into OCSP, PKCS, and other smaller security enhancements introduced in Java 9.
Overview
Syllabus
Introduction
Agenda
TLS support
What is TLS
TLS handshake process
Java Secure Socket
When is TLS handshake triggered
SSL socket server
SSL engine
DTLS
What is DTLS
Differences between DTLS and TLS
Bouncy Castle
DTLS example
TLS API
Application Layer Protocol Negotiation Extension
Set Application Protocols
Start Handshake
Gate Application Protocol
Application Layer Protocol Negotiation
Banking Application Server
Banking Server
OCSP
PKCS
Smaller enhancements
Summary
Taught by
Devoxx
