User manual
Security
mySND User Manual 69
7.1 How to Define the Encryption Level for SSL/TLS
Connections
The following connections on the SND Server can be encrypted via
SSL/TLS:
• Web access to the mySND File Browser and the mySND Control
Center: HTTPS (
Ö70)
• Email: POP3 (
Ö32)
• Email: SMTP (
Ö32)
In the case of POP3 and SMTP only the administration via email and
the notification service will be encrypted. The automatic file transfer
and the file transfer via the mySND File Browser are carried out
without encryption.
Encryption Level
The encryption strength and thus the safety of the connection is
defined via the encryption level.
Cipher Suite
Each encryption level is a collection of so-called cipher suites. A
cipher suite is a standardized sequence of four cryptographic
algorithms that are used to establish a secure connection.
Depending on their cipher strength (in bit), cipher suites are grouped
to form an encryption level. Which cipher suites are supported by
the SND Server, i.e. are part of an encryption level, depends on the
protocol used (SSLv2, SSLv3, TLSv1).
Establishing
Connections
When establishing a secure connection, a list of supported cipher
suites is sent to the communicating party. A cipher suite is agreed
upon that will be used later on. The strongest cipher suite that is
supported by both parties will be used by default. If there is no
cipher suite that is supported by both parties, no SSL/TLS connection
will be established.
The communicating parties of the SND Server (e.g. browser) must
support the cipher suites of the selected encryption level in order