- Java 10 Tutorial
- Java 10 - Home
- Java 10 - Overview
- Java 10 - Environment Setup
- Java 10 - Time Based Release Versioning
- Java 10 - Local Variable Type Inference
- Java 10 - New APIs & Options
- Java 10 - Removed Features & Options
- Java 10 - Deprecated Features & Options
- Java 10 - JIT Compiler
- Java 10 - Class-Data Sharing
- Java 10 - Enhanced Garbage Collection
- Java 10 - Locale Enhancement
- Java 10 - Heap Allocation
- Java 10 - Consolidated JDK Forest
- Java 10 - Root Certificate
- Java 10 - Thread-local Handshake
- Java Other Versions Tutorials
- Java Tutorial
- Java 8 Tutorial
- Java 9 Tutorial
- Java 10 Useful Resources
- Java 10 - Quick Guide
- Java 10 - Useful Resources
- Java 10 - Discussion
Java 10 - Root Certificate
JEP 319 - Root Certificates
Cacerts store, prior to Java 10 is an empty set. It is required to contain a set of certificates which can be used to establish trust in certificates chain of various security protocols of vendors.
OpenJDK builds are not having such certificates which is why critical security components like TLS didn't work in default build.
Now as Oracle has open sourced the root certificates using Oracle JAVA SE Root CA program, OpenJDK builds can now have root certificates and thus can reduce the difference between OpenJDK and Oracle JDK.
Oracle JAVA SE Root CA program issues the root certificates. Vendors who've signed the agreement, are included in the set of root certificates. The vendors who are not registered will be included in next release.
Advertisements