2012-07-05

TLS: Disabling legacy cipher suites

First: "cipher suite is a named combination of authenticationencryption, and message authentication code (MAC) algorithms".

If you are using TLS (for HTTPS typicaly) you may want to remove some Cipher Suites.

You maybe a little bit less compatible, but also a bit more secure. Things will be better when TLS1.2 is implemented everywhere.

You can also claim to be FIPS 140 compliant: http://csrc.nist.gov/publications/nistpubs/800-52/SP800-52.pdf !

How to do it:

If someone knows how to do it on the IBM J9 via configuration, I am interested.

No comments:

2023 summary

  Life is bigger than what you can imagine.  Still using Roam  http://www.roamresearch.com/  to take notes Still using Mastodon mainly, but ...