EldoS | Feel safer!

Software components for data protection, secure storage and transfer


Posted: 02/23/2010 04:32:47
by neil young (Standard support level)
Joined: 11/05/2007
Posts: 96

is it possible to negotiate "Null" ciphersuite, hence no encryption?

EDIT: Additional information: I have removed all ciphers from the client (set to false) and enabled just SB_SUITE_NULL_NULL_NULL. I can see the offer (and only this) in Client Hello. The server seems to ack this with Server Hello. But if the first unencrypted message of the client arrives, error 75782 occurs server side and the connection is torn down.

Posted: 02/23/2010 05:10:15
by Ken Ivanov (Team)

As far as I remember, there were some problems with NULL ciphers on SBB 5. That's why you might encounter those errors.
Posted: 02/23/2010 05:16:49
by neil young (Standard support level)
Joined: 11/05/2007
Posts: 96

Hmm. That's bad :( Are you sure?
Posted: 02/23/2010 05:48:13
by Ken Ivanov (Team)

I am sure about the problems themselves, but not sure about the exact version where they have been fixed. Will try to dig it out.

If your purpose is to omit certificate-based authentication, you may take a look at the DH-ANON ciphersuites. They do not require certificate to be present.



Topic viewed 960 times

Number of guests: 1, registered members: 0, in total hidden: 0


Back to top

As of July 15, 2016 EldoS business operates as a division of /n software, inc. For more information, please read the announcement.

Got it!