Is SHA-1 for TLS Being Disabled in the Upcoming Release of Java SE 6, 7 and 8?

(Doc ID 2254324.1)

Last updated on AUGUST 26, 2017

Applies to:

Java SE JDK and JRE - Version 6 to 8
Information in this document applies to any platform.


SHA-1 is now considered a weak cipher.  In recognition of this, Oracle will no longer allow the use of the SHA-1 algorithm for certificate chains.  Also, SHA-1 will no longer be the default choice of algorithm for timestamping of certificates.  These changes are coming, but when?


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms