Best Practices for SSL Connections
The following best practices apply to local plug-ins when setting up SSL connections
in Java.
- Use TLS 1.2.For example:SSLContext sslContext.getInstance("TLSv1.2");
- Create a dedicated SSL socket factory for each plug-in. Avoid the methodHttpsURLConnection.setDefaultSSLSocketFactory(), which uses a static factory object that can lead to conflicts between plug-ins.For example, use the following method to create an SSL socket factory:SSLSocketFactor socketFactory = sslContext.getSocketFactory();For a more complete example, see theTrustedServiceclass in thehtml-sampleof the SDK.