05 July 2012

TLS: Disabling legacy cipher suites

First: "cipher suite is a named combination of authenticationencryption, and message authentication code (MAC) algorithms".

If you are using TLS (for HTTPS typicaly) you may want to remove some Cipher Suites.

You maybe a little bit less compatible, but also a bit more secure. Things will be better when TLS1.2 is implemented everywhere.

You can also claim to be FIPS 140 compliant: http://csrc.nist.gov/publications/nistpubs/800-52/SP800-52.pdf !

How to do it:

If someone knows how to do it on the IBM J9 via configuration, I am interested.

Post a Comment

In 2018, there will be innovations, but no jobs

There will be innovations, but no jobs : Trends 2017: The disconnect between growth and employment (International Labour Organization - U...