關於部落格
童年生長的地方有個老名字叫~紅瓦厝~

現在住的建築物是磚紅色的外牆

就用紅瓦厝
作為 Blog 的名字
  • 393037

    累積人氣

  • 61

    今日人氣

    0

    追蹤人氣

Cipher suites

Start of changeTo allow users to select the level of security that suits their needs, and to enable communication with others who may have different needs, SSL defines cipher suites, or sets of ciphers. When an SSL connection is established, the client and server exchange information about which cipher suites they have in common. They then communicate using the common cipher suite that offers the highest level of security. If they do not have a cipher suite in common, then secure communication is not possible and CICS closes the connection.End of change

Start of changeUse the ENCRYPTION system initialization parameter to specify the level of encryption that CICS® should use. The default is STRONG, which means that CICS can use all of the cipher suites to negotiate with clients. You can set a minimum as well as a maximum encryption level by editing the list of cipher suites in the CIPHERS attribute on the appropriate resource definition.End of change

Start of changeTo specify the level of encryption required:
For inbound HTTP and IIOP
Use the CIPHERS attribute of the TCPIPSERVICE resource. This automatically defines the PRIVACY attribute.
For outbound IIOP
Use the CIPHERS attribute of the CORBASERVER resource. This automatically defines the OUTPRIVACY attribute
For outbound HTTP and web service requests
Use the CIPHERS attribute of the URIMAP resource definitions.
The PRIVACY and OUTPRIVACY attributes are no longer supported, except in compatibility mode. The values are determined by the list of ciphers in the CIPHERS attribute as follows:
NOTSUPPORTED
Specified when the list of ciphers in the CIPHERS attribute only includes ciphers with no encryption. For example, cipher suites 01 and 02.
REQUIRED
Specified when the list of ciphers in the CIPHERS attribute only includes cipher suites with encryption. For example, if ENCRYPTION=STRONG is specified, the full list of cipher suites are listed in the CIPHERS attribute. If you remove 01 and 02, the PRIVACY attribute changes to REQUIRED.
SUPPORTED
Specified when the list of ciphers in the CIPHERS attribute includes 01 and 02 in combination with any other cipher suites.
End of change
The cipher suites supported by z/OS™ 1.4 and CICS are shown in Table 1. Start of changeIn later versions of z/OS, for example version 1.6, more ciphers are available.End of change
< !-- --> caption>Table 1. Cipher suites supported by z/OS and CICS
Cipher suiteEncryption algorithmKey lengthMAC algorithm
01 No encryption MD5
02 No encryption SHA
03 RC4 40 bits MD5
04 RC4 128 bits MD5
05 RC4 128 bits SHA
06 RC2 40 bits MD5
09 DES 56 bits SHA
0A Triple DES 168 bits SHA
Start of change2FEnd of change AES 128 bits SHA
Start of change35End of change AES 256 bits SHA
The terms used in this table are:
MD5
Message Digest algorithm
SHA
Secure Hash algorithm
RC2, RC4
Rivest encryption
DES
Data Encryption Standard
Triple DES
DES applied three times
Start of changeAESEnd of change
Advanced Encryption Standard
相簿設定
標籤設定
相簿狀態