Cipher Suites

I know how to get all enabled/supported cipher suites from an SSLServerSocket or an SSLSocket, but I only want to use ones that are 128 bit or above. I know I can get all supported suites, then set only the ones that are 128+ bit, but I can't tell which ones are 128+ bit. Is there an easy way to tell which ones are? Thanks in advance.

[344 byte] By [Rob_Ha] at [2007-11-26 19:32:34]

«« Substring error with ( or )
»» I just can't pass a String array to another method.

# 1

Well it's mostly in the name, but you don't really need to do this. the SSL handshake chooses the strongest possible cipher that can be negotiated between the client and the server. As long as they both support any of the 128-bit ciphers one of them will be chosen (unless e.g. they both also support a 256-bit cipher).

ejpa at 2007-7-9 22:03:55 >

top of Java-index,Security,Java Secure Socket Extension (JSSE)...

# 2

Thanks for the answer, but I don't want the client and server to connect if a cipher under 128-bit is chosen. Any suggestions?

Rob_Ha at 2007-7-9 22:03:55 >

# 3

It's mostly in the name, by which I mean that you can mostly see _128_ in the name itself. There are some exceptions. See RFC2246 for all the cipher names and what they mean, including key lengths. http://www.ietf.org/rfc/rfc2246.txt

ejpa at 2007-7-9 22:03:56 >

# 4

Thanks! You were a big help. Thank you.

Rob_Ha at 2007-7-9 22:03:56 >

Java programming resources: FAQs, tutorials, compiler and browser download sites, documentation, books lists, IDEs, etc.

Cipher Suites

Security New Topic

Security Hot Topic

Security

All Classified