Forum Discussion

Nimbostratus

Sep 04, 2013

Need clarification on SSL Ciphers found in SSL Dump

I am trying to determine which corresponding SSL Ciphers in the SSL Profiles that F5 provides address the cipher suite detected by SSLDump as "TLS_RSA _WITH_3DES_EDE_CBC_SHA" Any assistance with...

Cirrostratus

Sep 04, 2013

A cipher suite won't provide the TLS/SSL version. For the rest, it breaks down like so;

key exchange/agreement : RSA

bulk cipher : 3DES_EDE_CBC - 168bit key size (112 effective)

message authentication : SHA (1) - 128bit key size

Strength-wise I think it's still strong (it's a matter or personal and mathamatical opinion I guess) but AES is obviously now preferred over 3DES. SHA is still fine as far as I know.

I'm sure Kevin will be along to correct me ;-)

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)