Configuring TLS Extended Master Secret (EMS) for WebSphere Application Server and WebSphere Liberty

Configure TLS Extended Master Secret (EMS) for WebSphere® Application Server and WebSphere Liberty to avoid performance issues.

A new Java security requirement for TLS Extended Master Secret (EMS) might cause performance issues. Java EMS support requires a full handshake in every SSL/TLS connection between the application server and the proxy server. At this time, not all proxy or HTTP servers support EMS. If you enable EMS on servers that don't support it, Engineering Lifecycle Management applications on WebSphere Application Server or WebSphere Liberty might experience performance problems. For more information about which environments are affected by this problem and how to diagnose and resolve it, see Configuring TLS Extended Master Secret for WebSphere Application Server and WebSphere Liberty on the Deployment wiki.