If the security profile authenticates only the server, then only the server must provide a certificate to be accepted or rejected by the client. If the security profile authenticates both the client and the server, then the client is also required to authenticate using a certificate; both the client and server will provide a digital certificate to be accepted or rejected by the other.
Profile |
Authenticates |
Cipher suites |
intl |
server |
- SA_EXPORT_WITH_RC4_40_MD5
- RSA_EXPORT_WITH_DES40_CBC_SHA
|
intl_mutual |
client/server |
- RSA_EXPORT_WITH_RC4_40_MD5
-
RSA_EXPORT_WITH_DES40_CBC_SHA
|
strong |
server |
- RSA_WITH_3DES_EDE_CBC_SHA
- RSA_WITH_RC4_128_MD5
- RSA_WITH_RC4_128_SHA
|
strong_mutual |
client/server For example, this is the required option for mutual authentication of Unwired Platform and Gateway.
|
- RSA_WITH_3DES_EDE_CBC_SHA
- RSA_WITH_RC4_128_MD5
- RSA_WITH_RC4_128_SHA
|
domestic |
server |
- RSA_WITH_3DES_EDE_CBC_SHA
- RSA_WITH_RC4_128_MD5
- RSA_WITH_RC4_128_SHA
- RSA_WITH_DES_CBC_SHA
- RSA_EXPORT_WITH_RC4_40_MD5
- RSA_EXPORT_WITH_DES40_CBC_SHA
- TLS_RSA_WITH_NULL_MD5
- TLS_RSA_WITH_NULL_SHA
|
domestic_mutual |
client/server |
- RSA_WITH_3DES_EDE_CBC_SHA
- RSA_WITH_RC4_128_MD5
- RSA_WITH_RC4_128_SHA
- RSA_WITH_DES_CBC_SHA
- RSA_EXPORT_WITH_RC4_40_MD5
- RSA_EXPORT_WITH_DES40_CBC_SHA
- RSA_WITH_NULL_MD5
- RSA_WITH_NULL_SHA
|