Skip to content

Allowed TLS Ciphers for B2B Transactions #1

@lukepopp

Description

@lukepopp

Under FAPI-RW, the following Ciphers are permitted:

LS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

Issues:

  • DHE is recommended to be used with key sizes of >=2048

  • older clients (for example Java 7 or unpatched Window Servers) may only support 1024 bit keys

Does the FAPI list require restricting?

Metadata

Metadata

Assignees

No one assigned

    Labels

    questionFurther information is requestedresponse providedA response has been provided and the issue will be closed in no further feedback is provided

    Type

    No type

    Projects

    No projects

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions