Lightnews — Scholar-powered news

Sean Mullan 🏳️‍🌈 @seanjmullan.org · 7d

"Post-Quantum Hybrid Key Exchange for TLS 1.3" is now a JEP Candidate! This feature will protect Java applications using TLS and the javax.net.ssl APIs from future quantum computing attacks.

openjdk.org/jeps/527

#java #jdk #security #tls

JEP 527: Post-Quantum Hybrid Key Exchange for TLS 1.3

openjdk.org

1 4

Sean Mullan 🏳️‍🌈 @seanjmullan.org · 14d

Four key security-related JEPS have been integrated since JDK 21.

#jdk #security #crypto

Sharat (Shar) Chander @sharatchander.bsky.social · 15d

#Java peers...Find out what #JDK enhancement proposals have been integrated in #JDK25 since #JDK21:

openjdk.org/projects/jdk...

2 7

Sean Mullan 🏳️‍🌈 @seanjmullan.org · 15d

JDK 25 Security Enhancements: seanjmullan.org/blog/2025/09...

Highlights of this release include a final version of the Key Derivation Function API and a new preview API for encoding and decoding cryptographic objects to/from PEM.

#jdk #java #security #crypto

seanjmullan.org

3 5

Sean Mullan 🏳️‍🌈 @seanjmullan.org · 26d

JEP 524: PEM Encodings of Cryptographic Objects (Second Preview) is now a Candidate - openjdk.org/jeps/524

This is the second preview of the new PEM API for encoding and decoding security data. Only a few changes since the first preview which will be in JDK 25.

#openjdk #crypto #security #java

1 1 6

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Sep 8

Great video by @ammbra1508.bsky.social on recent #Java #Security enhancements! Ana explains the concepts and importance of each feature with useful real world examples.

Ana-Maria Mihalceanu @ammbra1508.bsky.social · Sep 7

Emerging threats demand stronger defenses for #Java apps!

Learn how to adapt runtime security settings and prepare for post-quantum cryptography from the latest video from our #RoadTo25 series:

youtu.be/xeOuEqorY8g

#JDK25 #OpenJDK #SecurityUpdate #Security

How to Handle Security Changes in Java 25 #RoadTo25

YouTube video by Java

youtu.be

3 7

Reposted by Sean Mullan 🏳️‍🌈

Sharat (Shar) Chander @sharatchander.bsky.social · Aug 4

#Java peers, #JavaOne IS BACK AGAIN IN 2026 (March 17-19). Read our blog to learn more and sign up w/interest if you want to attend, speak, or sponsor: social.ora.cl/6011fdkbH

1 25 48

Reposted by Sean Mullan 🏳️‍🌈

billykorando.bsky.social @billykorando.bsky.social · Aug 1

Hey #Java Developers, ☕️

I'm going to be at JVMLS next week and I want to ask the JDK architects your burning questions about Java! Reply here by August 3rd, and upvote any questions you see that you'd like asked!

Watch answers on Aug 14th at youtube.com/java

3 7

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Jul 24

We just published a new JEP Draft for "Post-Quantum Hybrid Key Exhange for TLS 1.3". This will build on the post-quantum ML-KEM implementation in JDK 24 (JEP 496) and is another significant step in protecting your Java applications from future large-scale quantum computers.

openjdk.org/jeps/8358541

New JEP Draft: JDK-8358541: Post-Quantum Hybrid Key Exchange for TLS 1.3

mail.openjdk.org

3 5

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Jul 21

My #JavaOne `25 talk on "Java Security Evolution: Out with the Old, In with the New" is now available on YouTube: www.youtube.com/watch?v=hLJQ...

#java #security

Java Security Evolution - Out with the Old, In with the New

YouTube video by Java

www.youtube.com

7 11

Reposted by Sean Mullan 🏳️‍🌈

Joe Darcy @jddarcy.bsky.social · Jul 5

Just one month to go until my #JVMLS talk on "New Numeric Types in Java": openjdk.org/projects/mlv...

openjdk.org

4 7

Sean Mullan 🏳️‍🌈 @seanjmullan.org · May 27

JEP 470: PEM Encodings of Cryptographic Objects (Preview) has been targeted to JDK 25 - openjdk.org/jeps/470

This is a Preview API, so we have time to make changes. Let us know if the API is easy to use and satisfies your use cases.

#openjdk #crypto #security #java

JEP 470: PEM Encodings of Cryptographic Objects (Preview)

openjdk.org

6 12

Sean Mullan 🏳️‍🌈 @seanjmullan.org · May 22

Seats are great. It’s 1-1 right now, great game! I’m rooting for the Mets as you probably know 😀

1

Sean Mullan 🏳️‍🌈 @seanjmullan.org · May 22

My status! Mets vs Sox

1 1

Sean Mullan 🏳️‍🌈 @seanjmullan.org · May 16

JEP: 510: Key Derivation Function API has been targeted to JDK 25 - openjdk.org/jeps/510

This was a Preview API in JDK 24, and JDK 25 will contain the final, or permanent version of the API.

#openjdk #crypto #security #java

openjdk.org

3 8

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Apr 30

I understand your point, but Preview features can be very useful and give us additional time to incorporate feedback before the API becomes permanent. Since this is somewhat of a different API than other security APIs, we want to make sure users get a chance to try the API and provide feedback.

1

Reposted by Sean Mullan 🏳️‍🌈

Loïc Mathieu @loicmathieu.fr · Apr 29

This is a long expected feature!
Most framework provide such feature, it is great that it would be provided OOTB by the JDK

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Apr 29

PEM Encodings of Cryptographic Objects (Preview) is now a Candidate JEP - openjdk.org/jeps/470

This is a new API for encoding and decoding Java objects to and from the PEM format.

#openjdk #crypto #security #java

1 1 3

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Apr 29

PEM Encodings of Cryptographic Objects (Preview) is now a Candidate JEP - openjdk.org/jeps/470

This is a new API for encoding and decoding Java objects to and from the PEM format.

#openjdk #crypto #security #java

3 8

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Apr 16

JEP: 510: Key Derivation Function API is now a Candidate - openjdk.org/jeps/510

This was a Preview API in JDK 24, and we are now proposing to finalize the API.

#openjdk #crypto #security #java

openjdk.org

1 2

Reposted by Sean Mullan 🏳️‍🌈

Stuart Marks @smarks.bsky.social · Apr 13

My #JavaOne talk on Sequenced Collections has been posted!

youtu.be/6yuDqkkYTGU?...

Sequenced Collections - Deep Dive with the Expert

YouTube video by Java

youtu.be

7 33

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Apr 8

JDK 24 Security Enhancements: seanjmullan.org/blog/2025/04...

Highlights of this release include 2 new core quantum-resistant cryptographic algorithms (ML-KEM and ML-DSA), a preview API for Key Derivation Functions, and the permanent disabling of the Security Manager.

#jdk #java #security #crypto

JDK 24 Security Enhancements

seanjmullan.org

4 9

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Mar 25

We're hiring! The Java Platform Group is responsible for developing the JDK. Most work is in open source (OpenJDK). This opening is for the Java Security Libraries team. It can be on-site or remote.

www.linkedin.com/jobs/view/41...

#security #crypto #hiring #java #jdk

Oracle hiring Principal Software Developer (Java Security Libraries) in United States | LinkedIn

Posted 1:00:23 PM. Job DescriptionDesign, develop, troubleshoot and debug software programs for databases…See this and similar jobs on LinkedIn.

www.linkedin.com

2 5

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Mar 23

Thanks for all those who attended my session on #Java Security Evolution at #JavaOne 2025. I'll send a link to my slides in a followup post.

2 6

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Mar 19

#JDK24 was released yesterday! This is a significant release for Java Security, as it contains two new core Quantum-Resistant cryptographic algorithms, ML-KEM for Key Encapsulation, and ML-DSA for Digital Signatures.

openjdk.org/projects/jdk...

#crypto #security #java #pqc

4 6

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Mar 19

Good to see my buddy #Duke again!
#JavaOne

3

Sean Mullan 🏳️‍🌈 @seanjmullan.org · Mar 18

#JavaOne keynote, Post-Quantum Crypto enhancements #crypto #security

1