Supported TLS cipher suites
A cipher suite defines a set of technologies to secure your TLS communications:
l
Key exchange algorithm (how the secret key used to encrypt the data is
communicated from the client to the server). Examples: RSA key or Diffie-Hellman
(DH)
l
Authentication method (how hosts can authenticate the identity of remote hosts).
Examples: RSA certificate, DSS certificate, or no authentication
l
Encryption cipher (how to encrypt data). Examples: AES (256 or 128 bits) or
3DES (168 bits)
l
Hash algorithm (ensuring data by providing a way to determine if data has been
modified). Examples: SHA-2 or SHA-1
The supported cipher suites combine all these items.
The following list gives the OpenSSL names of the TLS cipher suites for the storage
system and the associated ports.
Table 20 Default/Supported TLS cipher suites supported on the storage system
Cipher Suites Protocols Ports
TLS_DHE_RSA_WITH_AES_128_CBC_SHA TLSv1, TLSv1.1, TLSv1.2 443, 8443,
8444
TLS_DHE_RSA_WITH_AES_256_CBC_SHA TLSv1, TLSv1.1, TLSv1.2 443, 8443,
8444
TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 TLSv1.2 443, 8443,
8444
TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 TLSv1.2 443, 8443,
8444
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 TLSv1.2 443, 8443,
8444
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 TLSv1.2 443, 8443,
8444
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA TLSv1, TLSv1.1, TLSv1.2 443, 8443,
8444
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA TLSv1, TLSv1.1, TLSv1.2 443, 8443,
8444
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA2
56
TLSv1.2 443, 8443,
8444
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA3
84
TLSv1.2 443, 8443,
8444
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA2
56
TLSv1.2 443, 8443,
8444
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA3
84
TLSv1.2 443, 8443,
8444
TLS_RSA_WITH_AES_128_CBC_SHA TLSv1, TLSv1.1, TLSv1.2 5989
TLS cipher suites
68 EMC Unity All Flash, EMC Unity Hybrid, EMC UnityVSA 4.0 Security Configuration Guide
To Next Page
Loading...
Need help?
General
