2012-07-05

TLS: Disabling legacy cipher suites

First: "cipher suite is a named combination of authenticationencryption, and message authentication code (MAC) algorithms".

If you are using TLS (for HTTPS typicaly) you may want to remove some Cipher Suites.

You maybe a little bit less compatible, but also a bit more secure. Things will be better when TLS1.2 is implemented everywhere.

You can also claim to be FIPS 140 compliant: http://csrc.nist.gov/publications/nistpubs/800-52/SP800-52.pdf !

How to do it:

If someone knows how to do it on the IBM J9 via configuration, I am interested.

Post a Comment

Fedora Special Interest Groups (SIGs) Audio Creation / Music

Hoping to revive the Fedora Audio Creation SIG. (or at least to update/delete a few Wiki pages) The prominent figure in "Fedora Audi...