Disable DES and 3DES Ciphers in JBOS

book

Article ID: 15408

calendar_today

Updated On:

Products

CA Mainframe Chorus DBA Discipline CA Chorus for Storage Management CA Chorus for Storage Management

Issue/Introduction

How to disable ciphers in JBOS



Due to the Sweet32 vulnerability, we need to ensure that JBOS is not allowed to use DES and 3DES ciphers. Is there documentation that describes how to do this?

Environment

Release:
Component: CHRSEC

Resolution

Here's IBM suggested way to disable ciphers.
https://www.ibm.com/support/knowledgecenter/en/SSYKE2_6.0.0/com.ibm.java.security.component.60.doc/security-component/jsse2Docs/disabledalgorithms.html

which is done in directory jre/lib/security/java.security.