Crypto-agility configuration for Java is described below.

  • Location of the file for setting ciphers for Java:
    /usr/local/java/jdk8/jre/lib/security/java.security
  • The following lines in the above-mentioned file store information related to ciphers:
    jdk.tls.legacyAlgorithms= \
          K_NULL, C_NULL, M_NULL, \
          DHE_DSS_EXPORT, DHE_RSA_EXPORT, DH_anon_EXPORT, DH_DSS_EXPORT, \
          DH_RSA_EXPORT, RSA_EXPORT, \
          DH_anon, ECDH_anon, \
          RC4_128, RC4_40, DES_CBC, DES40_CBC
    
  • Post modification, restart tomcat service in the appliance by using the command:
    sudo service dtService restart