SSL Encryption Algorithms

The table below lists the SSL encryption algorithms available in EFT and the Advanced Workflow Module (AWM). It is up to you to determine which settings to use in your environment.

SSL/TLS

Protocol Version

Encryption

Message Authentication Code (MAC) – Hashing algorithm

Key Exchange

Authentication

Cipher Suite Version

EFT

  • TLSv1.2

  • TLSv1.1

  • TLSv1.0

  • SSLv3

  • AESGCM (256)

  • AES (256)

  • Camellia (256)

  • AESGCM (128)

  • AES (128)

  • SEED (128)

  • Camellia (128)

  • IDEA (128)

  • RC4 (128)

  • 3DES (128)

  • EFT uses the OpenSSL FIPS Object Module

  • AHEAD

  • SHA384

  • SHA1

  • SHA256

  • MD5

  • ECDH

  • DH/DSS

  • DH

  • DH/RSA

  • ECDH/RSA

  • ECDH/ECDSA

  • RSA

  • Key lengths supported: 1024, 2048, 3072, and 4096 bits

  • RSA

  • ECDSA

  • DH

  • DSS

  • None

  • ECDH

  • TLSv1.2

  • SSLv3

AWM

  • TLSv1.2

  • TLSv1.1

  • TLSv1.0

  • SSLv3

  • AES (256) - CBC

  • AES (128) - CBC

  • RC4 (128)

  • 3DES (128) – EDE - CBC

  • RC4 (128)

  • RC4 (56)

  • RC4 (40)

  • RC2 (40) - CBC

  • DES - CBC

  • DES (40) - CBC

  • SHA256

  • SHA1

  • MD5

  • DH/DSS

  • DH

  • DH/RSA

  • RSA

  • RSA

  • DSS

  • None

  • TLSv1.2

  • SSLv3