Manualshelf

User's Manual

ManualsBrandsu-blox ManualsElectronicsGSM/UMTS/HSPA Data and Voice Module
71727374757677787980
SARA-G3 and SARA-U2 series - System Integration Manual
UBX-13000995 - R18 Advance Information System description
Page 78 of 206
1.13.8 SSL/TLS
Not supported by SARA-G300 and SARA-G310 modules.
Not supported by SARA-G340-00S and SARA-G350-00S / SARA-G350-00X modules.
The modules support the Secure Sockets Layer (SSL) / Transport Layer Security (TLS) with certificate key sizes up
to 4096 bits to provide security over the FTP and HTTP protocols.
The SSL/TLS support provides different connection security aspects:
x Server authentication
30
: use of the server certificate verification against a specific trusted certificate or a
trusted certificates list
x Client authentication
30
: use of the client certificate and the corresponding private key
x Data security and integrity: data encryption and Hash Message Authentication Code (HMAC) generation
The security aspects used during a connection depend on the SSL/TLS configuration and features supported.
Table 15 contains the settings of the default SSL/TLS profile and Table 16 to Table 20 report the main SSL/TLS
supported capabilities of the products. For a complete list of supported configurations and settings see the
u-blox AT Commands Manual [3].
Settings Value Meaning
Certificates validation level
Level 0
The server certificate will not be checked or verified
Minimum SSL/TLS version
Any
The server can use any of the TLS1.0/TLS1.1/TLS1.2 versions for the
connection
Cipher suite
Automatic
The cipher suite will be negotiated in the handshake process
Trusted root certificate internal name
None
No certificate will be used for the server authentication
Expected server host-name
None
No server host-name is expected
Client certificate internal name
None
No client certificate will be used
Client private key internal name
None
No client private key will be used
Client private key password
None
No client private key password will be used
Pre-shared key
None
No pre-shared key password will be used
Table 15: Default SSL/TLS profile
SSL/TLS Version SARA-U series SARA-G series
SSL 2.0
NO
NO
SSL 3.0
YES
YES
31
TLS 1.0
YES
YES
TLS 1.1
YES
30
YES
31
TLS 1.2
YES
30
YES
31
Table 16: SSL/TLS version support
Algorithm SARA-U series SARA-G series
RSA
YES
YES
PSK
YES
30
YES
Table 17: Authentication
30
Not supported by the “00” product version
31
Not supported by the “00” and “01” product versions