My Oracle Support Banner

OUD 12c - Customizing Size of Ephemeral Diffie-Hellman Keys (Doc ID 2606315.1)

Last updated on SEPTEMBER 06, 2020

Applies to:

Oracle Unified Directory - Version and later
Information in this document applies to any platform.


From Customizing Size of Ephemeral Diffie-Hellman Keys -

Diffie-Hellman (DH) keys of sizes less than 1024 bits have been deprecated because of their insufficient strength. In JDK 8, you can customize the ephemeral DH key size with the system property jdk.tls.ephemeralDHKeySize. This system property does not impact DH key sizes in ServerKeyExchange messages for exportable cipher suites. It impacts only the DHE_RSA, DHE_DSS, and DH_anon-based cipher suites in the JSSE Oracle provider.

You can specify one of the following values for this property:


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.