Caution: To avoid vulnerabilities associated with SSLv3 and SSLv2, good security practices recommend using TLSv1 or higher.
Example
If your server supports TLSv1.1 and TLSv1.2, you can specify acceptable cryptographic protocols with the following key-value pair:
CryptoProtocolVersion=TLSv1.1,TLSv1.2
Notes
When multiple protocols are specified, the driver uses the highest version supported by the server. If none of the specified protocols are supported by the server, the connection fails and the driver returns an error.
When no value has been specified for CryptoProtocolVersion, the driver establishes an SSL connection using the default. If the default is not supported by the server, the connection fails and the driver returns an error.
Data Source Method
setCryptoProtocolVersion
Default
The default is determined by the settings of the JRE.
When multiple protocols are specified, the driver uses the highest version supported by the server. If none of the specified protocols are supported by the server, the connection fails and the driver returns an error.