What is new for security specialists
This version contains many new and changed features for those who are responsible for securing applications and the application-serving environment in WebSphere® Application Server 傳統版.
- Using the java.security file in
Java™ 8
Starting with Java 8, WebSphere uses the IBMJDK java.security file. On previous versions of the Java SE Development Kit, WebSphere provided a customized java.security file. The WebSphere runtime security code has been modified to set up the java security information that used to be part of the customized java.security file.
- Configuring Java Servlet 3.1 support for security
Take advantage of the Java Servlet 3.1 features in WebSphere V9 by adding the servlet-3.1 feature in the server.xml file.
- SSL configurations
In WebSphere V9 the default SSL protocol has changed from SSL_TLS to SSL_TLSv2.