Initially published on September 12th, 2022.
Announcement
The Dell BSAFE Product Team announces the release and general availability of
Dell BSAFE SSL-J 6.5. This release integrates
Dell BSAFE Crypto-J 6.2.6, with
Crypto-J JSAFE and JCE Software Module 6.2.5 as its underlying FIPS 140-2 provider.
This release addresses two security issues. Refer to DSA-2022-188 and DSA-2022-208 for more details.
This release also incorporates the following changes:
- Support for X509ExtendedKeyManager added, providing access to the new methods chooseEngineClientAlias() and chooseEngineServerAlias().
- TLS 1.0 and 1.1 now disabled by default.
- Weak cipher suites removed from the default cipher suite list.
- Support for the following JDK properties is now added:
- jdk.tls.client.cipherSuites
- jdk.tls.server.cipherSuites
- jdk.tls.server.protocols
- jdk.tls.client.protocols
This release of SSL-J is also compatible and supported with BSAFE Crypto-J 7.0 with some considerations. Please review the
Crypto-J 7.0 Release Notes for further details.
For BSAFE downloads, documentation and more, contact
Dell Support.