Manual
DeviceMaster LT User Guide: 2000586 Rev. B
DeviceMaster LT Security - 57
DeviceMaster LT Supported Cipher Suites
- Message Authentication Code
• hash function (checksum) used to veri
fy that each message frame has
not be corrupt
ed or changed while in transit.
• typical options include MD5,
SHA, MD2, MD4
• DeviceMaster LT supports MD5, SHA
• In the design of the SSL/TLS protocols the choice
s of four of the above are not
i
ndependent of each other: only certain combinations are defined by th
e
standards
. The standard combinations of protocol (SSL or TLS) and
cipher
suites support
by DeviceMaster LT are shown in the attached table.
DeviceMaster LT
Supported Cipher
Suites
The DeviceMaster LT supports the cipher suites:
SSL Resources You can refer to the following SSL res
ources for more information:
• Standard reference book is SSL an
d TLS by Eric Rescorla
• Wikipedia page on SSL/TLS provides a good overview:
http://en.wikipedia.org/
wiki/TLS
• openssl contains command-line tools to do the following. More information is
available at:
http://www.openssl.org/
- Create/examine keys/certificates
- Act as client or server
• ss
ldump is a -command line tool that displays a human-readable dump of an
SSL connection's handshaking and traffic:. More information can be found at
:
http://www.rtfm.com/ssldump/.
- If provided with server's private key, can decrypt data stream
- Can display decoded data stream in ASCII/hex
- Can display contents of handshaking packets (including ID certificates)
Protocol Public Key Authentication Cipher MAC
SSL RSA RSA 3DES SHA
SSL
RSA RSA RC4 SHA
SSL RSA RSA RC4 MD5
SSL DHE RSA 3DES SHA
SSL DHA RSA RC4 MD5
SSL RSA RSA NULL MD5
SSL RSA RSA NULL SHA
TLS RSA RSA AES128 SHA
TLS RSA RSA AES256 SHA
TLS DHE RSA AES128 SHA
TLS DHE RSA AES256 SHA
TLS DHA RSA AES128 SHA
TLS DHA RSA AES256 SHA