Kbase P90484: SSL Cryptographic Support Explained
| Autor |
Progress Software Corporation - Progress |
| Acesso |
Público |
| Publicação |
10/12/2004 |
|
Status: Unverified
GOAL:
SSL Cryptographic Support Explained
FIX:
When the client and the server first connect, they negotiate which type and level of cryptographic technology to use. Because the strength of cryptography is restricted in some countries, the server will choose the highest level of cryptography that is supported by both client and server.
SSL separates encryption, authentication, and data integrity algorithms so that different algorithms may be used for different applications and in different environments.
For example, long keys may be used for authentication while short keys are used for encryption (longer keys require more processing). In addition, use of long keys is regulated in some countries.
SSL supports the DES (Data Encryption Standard), Triple-DES, DSA (Digital Signature Algorithm), RSA Security RC2 and RC4, MD5 (Message Digest 5), SHA-1 (Secure Hash Algorithm-1), and SKIPJACK.