HP-UX Directory Server Administrator Guide HP-UX Directory Server Version 8.1 (5900-3098, May 2013)

ManualsBrandsHP ManualsSoftwareHP-UX Directory Server

481

482

483

484

485

486

487

488

489

490

• Symmetric Key Bit Size

The size in bits of the key used for the actual transport data encryption.

• Message Authentication

SHA stands for Secure Hash Algorithm.

The Mozilla site, http://www.mozilla.org/projects/security/pki/nss/nss-3.11/

nss-3.11-algorithms.html for definitions and explanations of the encryption algorithms.

NOTE:

Directory Server supports ciphers for TLSv1 (recommended) and SSLv3. SSLv2 support is deprecated

and not enabled by default in Directory Server.

Directory Server provides the following TLSv1 ciphers:

Table 59 TLSv1 ciphers

Message

authentication

Symmetric

key bit size

Encryption

algorithm

Key exchangeDirectory Server name

SHA128AESDHE with DHStls_dhe_dss_aes_128_sha

SHA128AESDHE with RSAtls_dhe_rsa_aes_128_sha

SHA256AESRSAtls_rsa_aes_256_sha

SHA256AESDHE with DSStls_dhe_dss_aes_256_sha

SHA256AESDHE with RSAtls_dhe_rsa_aes_256_sha

SHA56RC4DHE with DSS 1024 bit

public key

tls_dhe_dss_1024_rc4_sha

SHA128RC4DHE with DSStls_dhe_dss_rc4_128_sha

SHA56RC4RSA with 1024 bit

public key

tls_rsa_export1024_with_rc4_56_sha

SHA56DESRSA with 1024 bit

public key

tls_rsa_export1024_with_des_cbc_sha

Directory Server provides the following SSLv3 ciphers:

Table 60 SSLv3 ciphers

Message

authentication

Symmetric

key bit size

Encryption

algorithm

Key exchangeDirectory Server name

SHA1683DESDHE with RSAdhe_rsa_3des_sha

SHA56DESDHE with RSAdhe_rsa_des_sha

SHA1683DESDHE with DSSdhe_dss_3des_sha

SHA56DESDHE with DSSdhe_dss_des_sha

SHA56DESRSArsa_des_sha

SHA1683DESRSArsa_3des_sha

SHA56DESRSArsa_fips_des_sha

SHA1683DESRSArsa_fips_3des_sha

MD5128RC4RSArsa_rc4_128_md5

MD540RC4RSArsa_rc4_40_md5

MD540RC2RSArsa_rc2_40_md5

486 Managing SSL