HP-UX Directory Server Administrator Guide HP-UX Directory Server Version 8.1 (5900-3098, May 2013)
• Symmetric Key Bit Size
The size in bits of the key used for the actual transport data encryption.
• Message Authentication
SHA stands for Secure Hash Algorithm.
The Mozilla site, http://www.mozilla.org/projects/security/pki/nss/nss-3.11/
nss-3.11-algorithms.html for definitions and explanations of the encryption algorithms.
NOTE:
Directory Server supports ciphers for TLSv1 (recommended) and SSLv3. SSLv2 support is deprecated
and not enabled by default in Directory Server.
Directory Server provides the following TLSv1 ciphers:
Table 59 TLSv1 ciphers
Message
authentication
Symmetric
key bit size
Encryption
algorithm
Key exchangeDirectory Server name
SHA128AESDHE with DHStls_dhe_dss_aes_128_sha
SHA128AESDHE with RSAtls_dhe_rsa_aes_128_sha
SHA256AESRSAtls_rsa_aes_256_sha
SHA256AESDHE with DSStls_dhe_dss_aes_256_sha
SHA256AESDHE with RSAtls_dhe_rsa_aes_256_sha
SHA56RC4DHE with DSS 1024 bit
public key
tls_dhe_dss_1024_rc4_sha
SHA128RC4DHE with DSStls_dhe_dss_rc4_128_sha
SHA56RC4RSA with 1024 bit
public key
tls_rsa_export1024_with_rc4_56_sha
SHA56DESRSA with 1024 bit
public key
tls_rsa_export1024_with_des_cbc_sha
Directory Server provides the following SSLv3 ciphers:
Table 60 SSLv3 ciphers
Message
authentication
Symmetric
key bit size
Encryption
algorithm
Key exchangeDirectory Server name
SHA1683DESDHE with RSAdhe_rsa_3des_sha
SHA56DESDHE with RSAdhe_rsa_des_sha
SHA1683DESDHE with DSSdhe_dss_3des_sha
SHA56DESDHE with DSSdhe_dss_des_sha
SHA56DESRSArsa_des_sha
SHA1683DESRSArsa_3des_sha
SHA56DESRSArsa_fips_des_sha
SHA1683DESRSArsa_fips_3des_sha
MD5128RC4RSArsa_rc4_128_md5
MD540RC4RSArsa_rc4_40_md5
MD540RC2RSArsa_rc2_40_md5
486 Managing SSL