During the SSL handshake, the client and server negotiate
a common security protocol via a CipherSuite. CipherSuites are
preferential lists of key-exchange algorithms, hashing
methods, and encryption methods used by SSL-enabled applications.
For a complete description of CipherSuites, visit the Internet Engineering
Task Force (IETF) organizationhttp://www.ietf.org/rfc/rfc2246.txt.
By default, the strongest CipherSuite supported by both the client and the server is the CipherSuite that is used for the SSL-based session.
Adaptive Server supports the CipherSuites that are available with the SSL Plus library API and the cryptographic engine, Security Builder™, both from Certicom Corp.
The following lists the CipherSuites, ordered by strength from stronget to weakest, supported in Adaptive Server 12.5and later.
TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_RC4_128_MD5, TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA, TLS_DHE_DSS_WITH_RC4_128_SHA, TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_DES_CBC_SHA, TLS_DHE_DSS_WITH_DES_CBC_SHA, TLS_DHE_RSA_WITH_DES_CBC_SHA, TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA, TLS_RSA_EXPORT1024_WITH_RC4_56_SHA, TLS_DHE_DSS_EXPORT1024_WITH_RC4_56_SHA, TLS_DHE_DSS_EXPORT1024_WITH_DES_CBC_SHA, TLS_RSA_EXPORT_WITH_RC4_40_MD5, TLS_RSA_EXPORT_WITH_DES40_CBC_SHA TLS_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA, TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA
The CipherSuites listed above conform to the transport
layer specification (TLS). TLS is an enhanced version of SSL 3.0,
and is an alias for the SSL version 3.0 CipherSuites.
