Manualshelf

Reference Guide

ManualsBrandsDell ManualsBSAFEBSAFE SSL-J
6789101112131415
12 SSL/TLS Communications
RSA BSAFE SSL-J 6.2.6 Security Best Practices Guide
Note the following about first block splitting:
Splitting only occurs:
For negotiated cipher suites that use CBC mode.
For protocols SSLv3 or TLS v1.0. First block splitting is not required for
negotiated protocols TLS v1.1 or higher.
Handshake packets are not split, only data packets.
The first application data block following any SSL or TLS handshake will be split.
To disable first block splitting:
If required, the first block splitting provided with this patch can be disabled by setting
the system property
jsse.enableCBCProtection:
Use the following Java code:
System.setProperty("jsse.enableCBCProtection", "false");
OR
On the Java command line, pass the following:
-Djsse.enableCBCProtection=”false”