Professional Documents
Culture Documents
Technical Note
Alteon Version 30.2.1
Issue 2
TABLE OF CONTENTS
CIPHER SUITES ........................................................................................................................................... 3
CIPHER SUITES OVERVIEW ...................................................................................................................... 3
CIPHER SUITES USED BY ALTEON .......................................................................................................... 4
CIPHER SUITE TABLES.............................................................................................................................. 5
TABLE 1 - ALL CIPHER SUITES ................................................................................................................... 6
TABLE 2 - RSA (DEFAULT) CIPHER SUITES ................................................................................................ 8
TABLE 3 PCI DSS COMPLIANCE CIPHER SUITES ..................................................................................... 9
TABLE 4 ALL NON-NULL CIPHER SUITES ............................................................................................... 11
TABLE 5 TLSV1.2 CIPHER SUITES ........................................................................................................ 13
TABLE 6 - LOW CIPHER SUITES................................................................................................................ 14
TABLE 7 MEDIUM CIPHER SUITES ......................................................................................................... 14
TABLE 8 HIGH CIPHER SUITES .............................................................................................................. 14
TABLE 9 EC CIPHERS........................................................................................................................... 16
TABLE 10 GCM CIPHERS ..................................................................................................................... 17
Page 2
Cipher Suites
This appendix provides an introduction to cipher suites in general and those specifically used by
Alteon. It also provides a complete list of the content of all supported cipher suites.
It includes the following topics:
Page 3
Perfect Forward Secrecy (PFS) is supported by Alteon and is enforced automatically once an
ephemeral cipher (such as DHE) is chosen during the SSL handshake.
The following terms are used when defining ciphers and cipher suites in the lists and tables
below:
RSARivest-Shamir-Adleman encryption
ECElliptic Curve
ALL Non-Null CiphersAll cipher suites except the NULL ciphers and ciphers offering
no authentication, which must be explicitly enabled.
HighHigh encryption cipher suites. Currently key lengths are larger than 128 bits.
RSA:RC4-128:MD5Cipher suites using RSA key exchange, 128 bit RC4 for
encryption and MD5 for MAC.
Page 4
RSA:RC4-128:SHA1Cipher suite using RSA key exchange, 128 bit RC4 for
encryption and SHA1 hash for MAC.
RSA:DES:SHA1Cipher suite using RSA key exchange, 3DES for encryption and
SHA1 hash for MAC.
RSA:3DES:SHA1Cipher suite using RSA key exchange, 3DES for encryption and
SHA1 hash for MAC.
User DefinedAlteon supports all ciphers supported by the accepted OpenSSL format
and more information can be found in OpenSSL documentation.
Expert User DefinedThe expert user-defined cipher-suite allowed for SSL. Use this
parameter if you are sure that you have the exact cipher string that is required.
As of version 30.2.1, Alteon supports Elliptic Curve (EC) and Galois Counter Mode (GCM)
ciphers. They are incorporated in the appropriate cipher suites. The following tables list the
supported EC and GCM ciphers:
Table 9 EC Ciphers
Page 5
Kx
Key
Exchange
Algorithm
Au
Authentication
Algorithm
Mac
Digest
Algorithm
Protocols Supported
(Software)
SSL
TLS
TLS
TLS
v3
v1.0
v1.1
v1.2
HW
accelerated
AEAD
ECDSA
Enc
Symmetric
Encryption
Algorithm
AESGCM
(256)
AESGCM
(256)
ECDH
RSA
ECDH
AEAD
ECDHE-RSA-AES256-SHA384
ECDHE-ECDSA-AES256SHA384
ECDH
RSA
AES(256)
SHA384
ECDH
ECDSA
AES(256)
SHA384
ECDHE-RSA-AES256-SHA
ECDH
RSA
AES(256)
SHA1
ECDHE-ECDSA-AES256-SHA
ECDH
ECDSA
AES(256)
SHA1
AECDH-AES256-SHA
ECDH-RSA-AES256-GCMSHA384
ECDH-ECDSA-AES256-GCMSHA384
ECDH
None
SHA1
ECDH/RSA
ECDH
AEAD
ECDH/ECDSA
ECDH
AES(256)
AESGCM
(256)
AESGCM
(256)
AEAD
ECDH-RSA-AES256-SHA384
ECDH-ECDSA-AES256SHA384
ECDH/RSA
ECDH
AES(256)
SHA384
ECDH/ECDSA
ECDH
AES(256)
SHA384
ECDH-RSA-AES256-SHA
ECDH/RSA
ECDH
AES(256)
SHA1
ECDH-ECDSA-AES256-SHA
ECDH/ECDSA
ECDH
SHA1
AES256-GCM-SHA384
RSA
RSA
AES(256)
AESGCM
(256)
AEAD
AES256-SHA256
RSA
RSA
AES(256)
SHA256
AES256-SHA
RSA
RSA
SHA1
CAMELLIA256-SHA
ECDHE-RSA-AES128-GCMSHA256
ECDHE-ECDSA-AES128-GCMSHA256
RSA
RSA
SHA1
ECDH
RSA
AEAD
ECDH
ECDSA
AES(256)
Camellia
(256)
AESGCM
(128)
AESGCM
(128)
AEAD
ECDHE-RSA-AES128-SHA256
ECDHE-ECDSA-AES128SHA256
ECDH
RSA
AES(128)
SHA256
ECDH
ECDSA
AES(128)
SHA256
ECDHE-RSA-AES128-SHA
ECDH
RSA
AES(128)
SHA1
ECDHE-ECDSA-AES128-SHA
ECDH
ECDSA
AES(128)
SHA1
AECDH-AES128-SHA
ECDH-RSA-AES128-GCMSHA256
ECDH-ECDSA-AES128-GCMSHA256
ECDH
None
SHA1
ECDH/RSA
ECDH
AEAD
ECDH/ECDSA
ECDH
AES(128)
AESGCM
(128)
AESGCM
(128)
AEAD
ECDH-RSA-AES128-SHA256
ECDH/RSA
ECDH
AES(128)
SHA256
ECDH-ECDSA-AES128-
ECDH/ECDSA
ECDH
AES(128)
SHA256
ECDHE-RSA-AES256-GCMSHA384
ECDHE-ECDSA-AES256-GCMSHA384
Page 6
SHA256
ECDH-RSA-AES128-SHA
ECDH/RSA
ECDH
AES(128)
SHA1
ECDH-ECDSA-AES128-SHA
ECDH/ECDSA
ECDH
SHA1
AES128-GCM-SHA256
RSA
RSA
AES(128)
AESGCM
(128)
AEAD
AES128-SHA256
RSA
RSA
AES(128)
SHA256
AES128-SHA
RSA
RSA
AES(128)
SHA1
SEED-SHA
RSA
RSA
SHA1
CAMELLIA128-SHA
RSA
RSA
SEED(128)
Camellia
(128)
SHA1
ECDHE-RSA-RC4-SHA
ECDH
RSA
RC4(128)
SHA1
ECDHE-ECDSA-RC4-SHA
ECDH
ECDSA
RC4(128)
SHA1
AECDH-RC4-SHA
ECDH
None
RC4(128)
SHA1
ECDH-RSA-RC4-SHA
ECDH/RSA
ECDH
RC4(128)
SHA1
ECDH-ECDSA-RC4-SHA
ECDH/ECDSA
ECDH
RC4(128)
SHA1
RC4-SHA
RSA
RSA
RC4(128)
SHA1
RC4-MD5
RSA
RSA
RC4(128)
MD5
ECDHE-RSA-DES-CBC3-SHA
ECDHE-ECDSA-DES-CBC3SHA
ECDH
RSA
3DES(168)
SHA1
ECDH
ECDSA
3DES(168)
SHA1
AECDH-DES-CBC3-SHA
ECDH
None
3DES(168)
SHA1
ECDH-RSA-DES-CBC3-SHA
ECDH/RSA
ECDH
3DES(168)
SHA1
ECDH-ECDSA-DES-CBC3-SHA
ECDH/ECDSA
ECDH
3DES(168)
SHA1
DES-CBC3-SHA
RSA
RSA
3DES(168)
SHA1
DES-CBC-SHA
RSA
RSA
DES(56)
SHA1
ECDHE-RSA-NULL-SHA
ECDH
RSA
None
SHA1
ECDHE-ECDSA-NULL-SHA
ECDH
ECDSA
None
SHA1
AECDH-NULL-SHA
ECDH
None
None
SHA1
ECDH-RSA-NULL-SHA
ECDH/RSA
ECDH
None
SHA1
ECDH-ECDSA-NULL-SHA
ECDH/ECDSA
ECDH
None
SHA1
NULL-SHA256
RSA
RSA
None
SHA256
NULL-SHA
RSA
RSA
None
SHA1
NULL-MD5
DHE-RSA-AES256-GCMSHA384
RSA
RSA
MD5
DH
RSA
None
AESGCM
(256)
AEAD
DHE-RSA-AES256-SHA256
DH
RSA
AES(256)
SHA256
DHE-RSA-AES256-SHA
DH
RSA
SHA1
DHE-RSA-CAMELLIA256-SHA
DH
RSA
SHA1
ADH-AES256-GCM-SHA384
DH
None
AES(256)
Camellia
(256)
AESGCM
(256)
AEAD
ADH-AES256-SHA256
DH
None
AES(256)
SHA256
Page 7
ADH-AES256-SHA
DH
None
SHA1
SHA1
RSA
AES(256)
Camellia
(256)
AESGCM
(128)
ADH-CAMELLIA256-SHA
DHE-RSA-AES128-GCMSHA256
DH
None
DH
AEAD
DHE-RSA-AES128-SHA256
DHE-RSA-AES128-SHA
DH
RSA
AES(128)
SHA256
DH
RSA
AES(128)
SHA1
DHE-RSA-SEED-SHA
DH
RSA
SHA1
DHE-RSA-CAMELLIA128-SHA
DH
RSA
SHA1
ADH-AES128-GCM-SHA256
DH
None
SEED(128)
Camellia
(128)
AESGCM
(128)
AEAD
ADH-AES128-SHA256
DH
None
AES(128)
SHA256
ADH-AES128-SHA
DH
None
AES(128)
SHA1
ADH-SEED-SHA
DH
None
SHA1
ADH-CAMELLIA128-SHA
DH
None
SEED(128)
Camellia
(128)
SHA1
ADH-RC4-MD5
DH
None
RC4(128)
MD5
EDH-RSA-DES-CBC3-SHA
DH
RSA
3DES(168)
SHA1
ADH-DES-CBC3-SHA
DH
None
3DES(168)
SHA1
EDH-RSA-DES-CBC-SHA
DH
RSA
DES(56)
SHA1
ADH-DES-CBC-SHA
DH
None
DES(56)
SHA1
EXP-RC4-MD5
export
RSA
RC4(40)
MD5 export
EXP-EDH-RSA-DES-CBC-SHA
export
RSA
DES(40)
SHA1 export
EXP-ADH-DES-CBC-SHA
export
None
DES(40)
SHA1 export
EXP-ADH-RC4-MD5
export
None
RC4(40)
MD5 export
Kx
Key
Exchange
Algorithm
Au
Authentication
Algorithm
Mac
Digest
Algorithm
Protocols Supported
(Software)
SSL
TLS
TLS
v3
v1.0
v1.1
TLS
v1.2
RSA
Enc
Symmetric
Encryption
Algorithm
AESGCM
(256)
AES256-GCM-SHA384
RSA
AES256-SHA256
AEAD
RSA
RSA
AES(256)
SHA256
AES256-SHA
RSA
RSA
SHA1
CAMELLIA256-SHA
RSA
RSA
SHA1
AES128-GCM-SHA256
RSA
RSA
AES(256)
Camellia
(256)
AESGCM
(128)
AEAD
AES128-SHA256
RSA
RSA
AES(128)
SHA256
AES128-SHA
RSA
RSA
AES(128)
SHA1
HW
accelerated
Page 8
SEED-SHA
RSA
RSA
SHA1
RSA
SEED(128)
Camellia
(128)
CAMELLIA128-SHA
RSA
SHA1
RC4-SHA
RSA
RSA
RC4(128)
SHA1
RC4-MD5
RSA
RSA
RC4(128)
MD5
DES-CBC3-SHA
RSA
RSA
3DES(168)
SHA1
DES-CBC-SHA
RSA
RSA
DES(56)
SHA1
EXP-DES-CBC-SHA
RSA(512)
RSA
DES(40)
SHA1 export
EXP-RC4-MD5
RSA(512)
RSA
RC4(40)
MD5 export
Kx
Key
Exchange
Algorithm
Au
Authentication
Algorithm
Mac
Digest
Algorithm
Protocols Supported
(Software)
SSL
TLS
TLS
v3
v1.0
v1.1
TLS
v1.2
AEAD
ECDSA
Enc
Symmetric
Encryption
Algorithm
AESGCM
(256)
AESGCM
(256)
ECDH
RSA
ECDH
AEAD
ECDHE-RSA-AES256-SHA384
ECDHE-ECDSA-AES256SHA384
ECDH
RSA
AES(256)
SHA384
ECDH
ECDSA
AES(256)
SHA384
ECDHE-RSA-AES256-SHA
ECDH
RSA
AES(256)
SHA1
ECDHE-ECDSA-AES256-SHA
DHE-RSA-AES256-GCMSHA384
ECDH
ECDSA
SHA1
DH
RSA
AES(256)
AESGCM
(256)
AEAD
DHE-RSA-AES256-SHA256
DH
RSA
SHA256
DHE-RSA-CAMELLIA256-SHA
ECDH-RSA-AES256-GCMSHA384
ECDH-ECDSA-AES256-GCMSHA384
DH
RSA
SHA1
ECDH/RSA
ECDH
AEAD
ECDH/ECDSA
ECDH
AES(256)
Camellia
(256)
AESGCM
(256)
AESGCM
(256)
AEAD
ECDH-RSA-AES256-SHA384
ECDH/RSA
ECDH
AES(256)
SHA384
ECDH-ECDSA-AES256-SHA384
ECDH/ECDSA
ECDH
AES(256)
SHA384
ECDH-RSA-AES256-SHA
ECDH/RSA
ECDH
AES(256)
SHA1
ECDH-ECDSA-AES256-SHA
ECDH/ECDSA
ECDH
SHA1
AES256-GCM-SHA384
RSA
RSA
AES(256)
AESGCM
(256)
AEAD
AES256-SHA256
RSA
RSA
AES(256)
SHA256
AES256-SHA
RSA
RSA
SHA1
CAMELLIA256-SHA
RSA
RSA
AES(256)
Camellia
(256)
SHA1
ECDHE-RSA-AES256-GCMSHA384
ECDHE-ECDSA-AES256-GCMSHA384
HW
accelerated
Page 9
ECDHE-RSA-AES128-GCMSHA256
ECDHE-ECDSA-AES128-GCMSHA256
ECDH
RSA
ECDH
ECDSA
AESGCM
(128)
AESGCM
(128)
ECDHE-RSA-AES128-SHA256
ECDHE-ECDSA-AES128SHA256
ECDH
RSA
ECDH
ECDHE-RSA-AES128-SHA
AEAD
AEAD
AES(128)
SHA256
ECDSA
AES(128)
SHA256
ECDH
RSA
AES(128)
SHA1
ECDHE-ECDSA-AES128-SHA
DHE-RSA-AES128-GCMSHA256
ECDH
ECDSA
SHA1
DH
RSA
AES(128)
AESGCM
(128)
AEAD
DHE-RSA-AES128-SHA256
DH
RSA
AES(128)
SHA256
DHE-RSA-SEED-SHA
DH
RSA
SHA1
DHE-RSA-CAMELLIA128-SHA
ECDH-RSA-AES128-GCMSHA256
ECDH-ECDSA-AES128-GCMSHA256
DH
RSA
SHA1
ECDH/RSA
ECDH
AEAD
ECDH/ECDSA
ECDH
SEED(128)
Camellia
(128)
AESGCM
(128)
AESGCM
(128)
AEAD
ECDH-RSA-AES128-SHA256
ECDH/RSA
ECDH
AES(128)
SHA256
ECDH-ECDSA-AES128-SHA256
ECDH/ECDSA
ECDH
AES(128)
SHA256
ECDH-RSA-AES128-SHA
ECDH/RSA
ECDH
AES(128)
SHA1
ECDH-ECDSA-AES128-SHA
ECDH/ECDSA
ECDH
SHA1
AES128-GCM-SHA256
RSA
RSA
AES(128)
AESGCM
(128)
AEAD
AES128-SHA256
RSA
RSA
AES(128)
SHA256
AES128-SHA
RSA
RSA
AES(128)
SHA1
SEED-SHA
RSA
RSA
SHA1
CAMELLIA128-SHA
RSA
RSA
SEED(128)
Camellia
(128)
SHA1
ECDHE-RSA-RC4-SHA
ECDH
RSA
RC4(128)
SHA1
ECDHE-ECDSA-RC4-SHA
ECDH
ECDSA
RC4(128)
SHA1
ECDH-RSA-RC4-SHA
ECDH/RSA
ECDH
RC4(128)
SHA1
ECDH-ECDSA-RC4-SHA
ECDH/ECDSA
ECDH
RC4(128)
SHA1
RC4-SHA
RSA
RSA
RC4(128)
SHA1
RC4-MD5
RSA
RSA
RC4(128)
MD5
ECDHE-RSA-DES-CBC3-SHA
ECDH
RSA
3DES(168)
SHA1
ECDHE-ECDSA-DES-CBC3-SHA
ECDH
ECDSA
3DES(168)
SHA1
EDH-RSA-DES-CBC3-SHA
DH
RSA
3DES(168)
SHA1
ECDH-RSA-DES-CBC3-SHA
ECDH/RSA
ECDH
3DES(168)
SHA1
ECDH-ECDSA-DES-CBC3-SHA
ECDH/ECDSA
ECDH
3DES(168)
SHA1
DES-CBC3-SHA
RSA
RSA
3DES(168)
SHA1
Page 10
Kx
Key
Exchange
Algorithm
Au
Authentication
Algorithm
Mac
Digest
Algorithm
Protocols Supported
(Software)
SSL
TLS
TLS
v3
v1.0
v1.1
TLS
v1.2
AEAD
ECDSA
Enc
Symmetric
Encryption
Algorithm
AESGCM
(256)
AESGCM
(256)
ECDH
RSA
ECDH
AEAD
ECDHE-RSA-AES256-SHA384
ECDHE-ECDSA-AES256SHA384
ECDH
RSA
AES(256)
SHA384
ECDH
ECDSA
AES(256)
SHA384
ECDHE-RSA-AES256-SHA
ECDH
RSA
AES(256)
SHA1
ECDHE-ECDSA-AES256-SHA
ECDH-RSA-AES256-GCMSHA384
ECDH-ECDSA-AES256-GCMSHA384
ECDH
ECDSA
SHA1
ECDH/RSA
ECDH
AEAD
ECDH/ECDSA
ECDH
AES(256)
AESGCM
(256)
AESGCM
(256)
AEAD
ECDH-RSA-AES256-SHA384
ECDH/RSA
ECDH
AES(256)
SHA384
ECDH-ECDSA-AES256-SHA384
ECDH/ECDSA
ECDH
AES(256)
SHA384
ECDH-RSA-AES256-SHA
ECDH/RSA
ECDH
AES(256)
SHA1
ECDH-ECDSA-AES256-SHA
ECDH/ECDSA
ECDH
SHA1
AES256-GCM-SHA384
RSA
RSA
AES(256)
AESGCM
(256)
AEAD
AES256-SHA256
RSA
RSA
AES(256)
SHA256
AES256-SHA
RSA
RSA
SHA1
CAMELLIA256-SHA
ECDHE-RSA-AES128-GCMSHA256
ECDHE-ECDSA-AES128-GCMSHA256
RSA
RSA
SHA1
ECDH
RSA
AEAD
ECDH
ECDSA
AES(256)
Camellia
(256)
AESGCM
(128)
AESGCM
(128)
AEAD
ECDHE-RSA-AES128-SHA256
ECDHE-ECDSA-AES128SHA256
ECDH
RSA
AES(128)
SHA256
ECDH
ECDSA
AES(128)
SHA256
ECDHE-RSA-AES128-SHA
ECDH
RSA
AES(128)
SHA1
ECDHE-ECDSA-AES128-SHA
ECDH-RSA-AES128-GCMSHA256
ECDH-ECDSA-AES128-GCMSHA256
ECDH
ECDSA
SHA1
ECDH/RSA
ECDH
AEAD
ECDH/ECDSA
ECDH
AES(128)
AESGCM
(128)
AESGCM
(128)
AEAD
ECDH-RSA-AES128-SHA256
ECDH/RSA
ECDH
AES(128)
SHA256
ECDH-ECDSA-AES128-SHA256
ECDH/ECDSA
ECDH
AES(128)
SHA256
ECDH-RSA-AES128-SHA
ECDH/RSA
ECDH
AES(128)
SHA1
ECDH-ECDSA-AES128-SHA
ECDH/ECDSA
ECDH
AES(128)
SHA1
ECDHE-RSA-AES256-GCMSHA384
ECDHE-ECDSA-AES256-GCMSHA384
HW
accelerated
Page 11
AES128-GCM-SHA256
RSA
RSA
AESGCM
(128)
AEAD
AES128-SHA256
RSA
RSA
AES(128)
SHA256
AES128-SHA
RSA
RSA
AES(128)
SHA1
SEED-SHA
RSA
RSA
SHA1
CAMELLIA128-SHA
RSA
RSA
SEED(128)
Camellia
(128)
SHA1
ECDHE-RSA-RC4-SHA
ECDH
RSA
RC4(128)
SHA1
ECDHE-ECDSA-RC4-SHA
ECDH
ECDSA
RC4(128)
SHA1
ECDH-RSA-RC4-SHA
ECDH/RSA
ECDH
RC4(128)
SHA1
ECDH-ECDSA-RC4-SHA
ECDH/ECDSA
ECDH
RC4(128)
SHA1
RC4-SHA
RSA
RSA
RC4(128)
SHA1
RC4-MD5
RSA
RSA
RC4(128)
MD5
ECDHE-RSA-DES-CBC3-SHA
ECDH
RSA
3DES(168)
SHA1
ECDHE-ECDSA-DES-CBC3-SHA
ECDH
ECDSA
3DES(168)
SHA1
ECDH-RSA-DES-CBC3-SHA
ECDH/RSA
ECDH
3DES(168)
SHA1
ECDH-ECDSA-DES-CBC3-SHA
ECDH/ECDSA
ECDH
3DES(168)
SHA1
DES-CBC3-SHA
RSA
RSA
3DES(168)
SHA1
DES-CBC-SHA
DHE-RSA-AES256-GCMSHA384
RSA
RSA
SHA1
DH
RSA
DES(56)
AESGCM
(256)
AEAD
DHE-RSA-AES256-SHA256
DH
RSA
AES(256)
SHA256
DHE-RSA-AES256-SHA
DH
RSA
SHA1
DHE-RSA-CAMELLIA256-SHA
DHE-RSA-AES128-GCMSHA256
DH
RSA
SHA1
DH
RSA
AES(256)
Camellia
(256)
AESGCM
(128)
AEAD
DHE-RSA-AES128-SHA256
DH
RSA
AES(128)
SHA256
DHE-RSA-AES128-SHA
DH
RSA
AES(128)
SHA1
DHE-RSA-SEED-SHA
DH
RSA
SHA1
DHE-RSA-CAMELLIA128-SHA
DH
RSA
SEED(128)
Camellia
(128)
SHA1
EDH-RSA-DES-CBC3-SHA
DH
RSA
3DES(168)
SHA1
EDH-RSA-DES-CBC-SHA
DH
RSA
DES(56)
SHA1
EXP-DES-CBC-SHA
RSA(512)
RSA
DES(40)
SHA1 export
EXP-RC4-MD5
RSA(512)
RSA
RC4(40)
MD5 export
EXP-EDH-RSA-DES-CBC-SHA
DH(512)
RSA
DES(40)
SHA1 export
Page 12
Kx
Key
Exchange
Algorithm
Au
Authentication
Algorithm
Enc
Symmetric
Encryption
Algorithm
Mac
Digest
Algorithm
Protocols Supported
(Software)
SSL
TLS
TLS
v3
v1.0
v1.1
TLS
v1.2
ECDH
RSA
AESGCM (256)
AEAD
ECDH
ECDSA
AESGCM (256)
AEAD
ECDHE-RSA-AES256-SHA384
ECDHE-ECDSA-AES256SHA384
ECDH-RSA-AES256-GCMSHA384
ECDH-ECDSA-AES256-GCMSHA384
ECDH
RSA
AES(256)
SHA384
ECDH
ECDSA
AES(256)
SHA384
ECDH/RSA
ECDH
AESGCM (256)
AEAD
ECDH/ECDSA
ECDH
AESGCM (256)
AEAD
ECDH-RSA-AES256-SHA384
ECDH/RSA
ECDH
AES(256)
SHA384
ECDH-ECDSA-AES256-SHA384
ECDH/ECDSA
ECDH
AES(256)
SHA384
AES256-GCM-SHA384
RSA
RSA
AESGCM (256)
AEAD
AES256-SHA256
ECDHE-RSA-AES128-GCMSHA256
ECDHE-ECDSA-AES128-GCMSHA256
RSA
RSA
AES(256)
SHA256
ECDH
RSA
AESGCM (128)
AEAD
ECDH
ECDSA
AESGCM (128)
AEAD
ECDHE-RSA-AES128-SHA256
ECDHE-ECDSA-AES128SHA256
ECDH-RSA-AES128-GCMSHA256
ECDH-ECDSA-AES128-GCMSHA256
ECDH
RSA
AES(128)
SHA256
ECDH
ECDSA
AES(128)
SHA256
ECDH/RSA
ECDH
AESGCM (128)
AEAD
ECDH/ECDSA
ECDH
AESGCM (128)
AEAD
ECDH-RSA-AES128-SHA256
ECDH/RSA
ECDH
AES(128)
SHA256
ECDH-ECDSA-AES128-SHA256
ECDH/ECDSA
ECDH
AES(128)
SHA256
AES128-GCM-SHA256
RSA
RSA
AESGCM (128)
AEAD
AES128-SHA256
DHE-RSA-AES256-GCMSHA384
RSA
RSA
AES(128)
SHA256
DH
RSA
AESGCM (256)
AEAD
DHE-RSA-AES256-SHA256
DH
RSA
AES(256)
SHA256
ADH-AES256-GCM-SHA384
DH
None
AESGCM (256)
AEAD
ADH-AES256-SHA256
DHE-RSA-AES128-GCMSHA256
DH
None
AES(256)
SHA256
DH
RSA
AESGCM (128)
AEAD
DHE-RSA-AES128-SHA256
DH
RSA
AES(128)
SHA256
ADH-AES128-GCM-SHA256
DH
None
AESGCM(128)
AEAD
ADH-AES128-SHA256
DH
None
AES(128)
SHA256
ECDHE-RSA-AES256-GCMSHA384
ECDHE-ECDSA-AES256-GCMSHA384
HW
accelerated
Page 13
Kx
Key
Exchange
Algorithm
Au
Authentication
Algorithm
Enc
Symmetric
Encryption
Algorithm
Mac
Digest
Algorithm
Protocols Supported
(Software)
SSL
TLS
TLS
v3
v1.0
v1.1
HW
accelerated
TLS
v1.2
RC4-SHA
RSA
RSA
RC4(128)
SHA1
RC4-MD5
RSA
RSA
RC4(128)
MD5
DES-CBC-SHA
RSA
RSA
DES(56)
SHA1
EDH-RSA-DES-CBC-SHA
DH
RSA
DES(56)
SHA1
ADH-DES-CBC-SHA
DH
None
DES(56)
SHA1
Kx
Key
Exchange
Algorithm
Au
Authentication
Algorithm
Enc
Symmetric
Encryption
Algorithm
Mac
Digest
Algorithm
Protocols Supported
(Software)
SSL
TLS
TLS
v3
v1.0
v1.1
HW
accelerated
TLS
v1.2
SEED-SHA
RSA
RSA
SEED(128)
SHA1
ECDHE-RSA-RC4-SHA
ECDH
RSA
RC4(128)
SHA1
ECDHE-ECDSA-RC4-SHA
ECDH
ECDSA
RC4(128)
SHA1
AECDH-RC4-SHA
ECDH
None
RC4(128)
SHA1
ECDH-RSA-RC4-SHA
ECDH
RC4(128)
SHA1
ECDH-ECDSA-RC4-SHA
ECDH/RSA
ECDH/ECDS
A
ECDH
RC4(128)
SHA1
RC4-SHA
RSA
RSA
RC4(128)
SHA1
RC4-MD5
RSA
RSA
RC4(128)
MD5
DHE-RSA-SEED-SHA
DH
RSA
SEED(128)
SHA1
ADH-SEED-SHA
DH
None
SEED(128)
SHA1
ADH-RC4-MD5
DH
None
RC4(128)
MD5
Mac
Digest
Algorithm
Protocols Supported
(Software)
SSL
TLS
TLS
v3
v1.0
v1.1
TLS
v1.2
AEAD
AEAD
SHA384
ECDHE-RSA-AES256-GCMSHA384
ECDHE-ECDSA-AES256-GCMSHA384
ECDHE-RSA-AES256-SHA384
Kx
Key
Exchange
Algorithm
Au
Authentication
Algorithm
ECDH
RSA
ECDH
ECDSA
Enc
Symmetric
Encryption
Algorithm
AESGCM
(256)
AESGCM
(256)
ECDH
RSA
AES(256)
HW
accelerated
Page 14
ECDHE-ECDSA-AES256SHA384
ECDH
ECDSA
AES(256)
SHA384
ECDHE-RSA-AES256-SHA
ECDH
RSA
AES(256)
SHA1
ECDHE-ECDSA-AES256-SHA
ECDH
ECDSA
AES(256)
SHA1
AECDH-AES256-SHA
ECDH-RSA-AES256-GCMSHA384
ECDH-ECDSA-AES256-GCMSHA384
ECDH
None
SHA1
ECDH/RSA
ECDH
AEAD
ECDH/ECDSA
ECDH
AES(256)
AESGCM
(256)
AESGCM
(256)
AEAD
ECDH-RSA-AES256-SHA384
ECDH/RSA
ECDH
AES(256)
SHA384
ECDH-ECDSA-AES256-SHA384
ECDH/ECDSA
ECDH
AES(256)
SHA384
ECDH-RSA-AES256-SHA
ECDH/RSA
ECDH
AES(256)
SHA1
ECDH-ECDSA-AES256-SHA
ECDH/ECDSA
ECDH
SHA1
AES256-GCM-SHA384
RSA
RSA
AES(256)
AESGCM
(256)
AEAD
AES256-SHA256
RSA
RSA
AES(256)
SHA256
AES256-SHA
RSA
RSA
SHA1
CAMELLIA256-SHA
ECDHE-RSA-AES128-GCMSHA256
ECDHE-ECDSA-AES128-GCMSHA256
RSA
RSA
SHA1
ECDH
RSA
AEAD
ECDH
ECDSA
AES(256)
Camellia
(256)
AESGCM
(128)
AESGCM
(128)
AEAD
ECDHE-RSA-AES128-SHA256
ECDHE-ECDSA-AES128SHA256
ECDH
RSA
AES(128)
SHA256
ECDH
ECDSA
AES(128)
SHA256
ECDHE-RSA-AES128-SHA
ECDH
RSA
AES(128)
SHA1
ECDHE-ECDSA-AES128-SHA
ECDH
ECDSA
AES(128)
SHA1
AECDH-AES128-SHA
ECDH-RSA-AES128-GCMSHA256
ECDH-ECDSA-AES128-GCMSHA256
ECDH
None
SHA1
ECDH/RSA
ECDH
AEAD
ECDH/ECDSA
ECDH
AES(128)
AESGCM
(128)
AESGCM
(128)
AEAD
ECDH-RSA-AES128-SHA256
ECDH/RSA
ECDH
AES(128)
SHA256
ECDH-ECDSA-AES128-SHA256
ECDH/ECDSA
ECDH
AES(128)
SHA256
ECDH-RSA-AES128-SHA
ECDH/RSA
ECDH
AES(128)
SHA1
ECDH-ECDSA-AES128-SHA
ECDH/ECDSA
ECDH
SHA1
AES128-GCM-SHA256
RSA
RSA
AES(128)
AESGCM
(128)
AEAD
AES128-SHA256
RSA
RSA
AES(128)
SHA256
AES128-SHA
RSA
RSA
SHA1
CAMELLIA128-SHA
RSA
RSA
AES(128)
Camellia
(128)
SHA1
ECDHE-RSA-DES-CBC3-SHA
ECDH
RSA
3DES(168)
SHA1
ECDHE-ECDSA-DES-CBC3-SHA
ECDH
ECDSA
3DES(168)
SHA1
Page 15
AECDH-DES-CBC3-SHA
ECDH
None
3DES(168)
SHA1
ECDH-RSA-DES-CBC3-SHA
ECDH/RSA
ECDH
3DES(168)
SHA1
ECDH-ECDSA-DES-CBC3-SHA
ECDH/ECDSA
ECDH
3DES(168)
SHA1
DES-CBC3-SHA
DHE-RSA-AES256-GCMSHA384
RSA
RSA
SHA1
DH
RSA
3DES(168)
AESGCM
(256)
AEAD
DHE-RSA-AES256-SHA256
DH
RSA
AES(256)
SHA256
DHE-RSA-AES256-SHA
DH
RSA
SHA1
DHE-RSA-CAMELLIA256-SHA
DH
RSA
SHA1
ADH-AES256-GCM-SHA384
DH
None
AES(256)
Camellia
(256)
AESGCM
(256)
AEAD
ADH-AES256-SHA256
DH
None
AES(256)
SHA256
ADH-AES256-SHA
DH
None
SHA1
ADH-CAMELLIA256-SHA
DHE-RSA-AES128-GCMSHA256
DH
None
SHA1
DH
RSA
AES(256)
Camellia
(256)
AESGCM
(128)
AEAD
DHE-RSA-AES128-SHA256
DH
RSA
AES(128)
SHA256
DHE-RSA-AES128-SHA
DH
RSA
SHA1
DHE-RSA-CAMELLIA128-SHA
DH
RSA
SHA1
ADH-AES128-GCM-SHA256
DH
None
AES(128)
Camellia
(128)
AESGCM
(128)
AEAD
ADH-AES128-SHA256
DH
None
AES(128)
SHA256
ADH-AES128-SHA
DH
None
SHA1
ADH-CAMELLIA128-SHA
DH
None
AES(128)
Camellia
(128)
SHA1
EDH-RSA-DES-CBC3-SHA
DH
RSA
3DES(168)
SHA1
ADH-DES-CBC3-SHA
DH
None
3DES(168)
SHA1
Table 9 EC Ciphers
Cipher Suite
Kx
Key
Exchange
Algorithm
Au
Authentication
Algorithm
Enc
Symmetric
Encryption
Algorithm
Mac
Digest
Algorithm
Protocols Supported
(Software)
SSL
TLS
TLS
v3
v1.0
v1.1
TLS
v1.2
AECDH-AES128-SHA
ECDH
None
AES(128)
SHA1
AECDH-AES256-SHA
ECDH
None
AES(256)
SHA1
AECDH-DES-CBC3-SHA
ECDH
None
3DES(168)
SHA1
AECDH-NULL-SHA
ECDH
None
None
SHA1
AECDH-RC4-SHA
ECDH-ECDSA-AES128-GCMSHA256
ECDH
None
SHA1
ECDH/ECDSA
ECDH
RC4(128)
AESGCM
(128)
AEAD
HW
accelerated
Page 16
ECDH-ECDSA-AES128-SHA
ECDH/ECDSA
ECDH
AES(128)
SHA1
ECDH-ECDSA-AES128-SHA256
ECDH-ECDSA-AES256-GCMSHA384
ECDH/ECDSA
ECDH
SHA256
ECDH/ECDSA
ECDH
AES(128)
AESGCM
(256)
AEAD
ECDH-ECDSA-AES256-SHA
ECDH/ECDSA
ECDH
AES(256)
SHA1
ECDH-ECDSA-AES256-SHA384
ECDH/ECDSA
ECDH
AES(256)
SHA384
ECDH-ECDSA-DES-CBC3-SHA
ECDH/ECDSA
ECDH
3DES(168)
SHA1
ECDH-ECDSA-NULL-SHA
ECDH/ECDSA
ECDH
None
SHA1
ECDH-ECDSA-RC4-SHA
ECDHE-ECDSA-AES128-GCMSHA256
ECDH/ECDSA
ECDH
SHA1
ECDH
ECDSA
RC4(128)
AESGCM
(128)
AEAD
ECDHE-ECDSA-AES128-SHA
ECDHE-ECDSA-AES128SHA256
ECDHE-ECDSA-AES256-GCMSHA384
ECDH
ECDSA
AES(128)
SHA1
ECDH
ECDSA
SHA256
ECDH
ECDSA
AES(128)
AESGCM
(256)
AEAD
ECDHE-ECDSA-AES256-SHA
ECDHE-ECDSA-AES256SHA384
ECDH
ECDSA
AES(256)
SHA1
ECDH
ECDSA
AES(256)
SHA384
ECDHE-ECDSA-DES-CBC3-SHA
ECDH
ECDSA
3DES(168)
SHA1
ECDHE-ECDSA-NULL-SHA
ECDH
ECDSA
None
SHA1
ECDHE-ECDSA-RC4-SHA
ECDHE-RSA-AES128-GCMSHA256
ECDH
ECDSA
SHA1
ECDH
RSA
RC4(128)
AESGCM
(128)
AEAD
ECDHE-RSA-AES128-SHA
ECDH
RSA
AES(128)
SHA1
ECDHE-RSA-AES128-SHA256
ECDHE-RSA-AES256-GCMSHA384
ECDH
RSA
SHA256
ECDH
RSA
AES(128)
AESGCM
(256)
AEAD
ECDHE-RSA-AES256-SHA
ECDH
RSA
AES(256)
SHA1
ECDHE-RSA-AES256-SHA384
ECDH
RSA
AES(256)
SHA384
ECDHE-RSA-DES-CBC3-SHA
ECDH
RSA
3DES(168)
SHA1
ECDHE-RSA-NULL-SHA
ECDH
RSA
None
SHA1
ECDHE-RSA-RC4-SHA
ECDH
RSA
RC4(128)
SHA1
Enc
Symmetric
Encryption
Algorithm
AESGCM
(128)
AESGCM
(256)
Mac
Digest
Algorithm
Protocols Supported
(Software)
SSL
TLS
TLS
v3
v1.0
v1.1
TLS
v1.2
AEAD
AEAD
Kx
Key
Exchange
Algorithm
Au
Authentication
Algorithm
ADH-AES128-GCM-SHA256
DH
None
ADH-AES256-GCM-SHA384
DH
None
HW
accelerated
Page 17
AES128-GCM-SHA256
RSA
RSA
AES256-GCM-SHA384
DHE-RSA-AES128-GCMSHA256
DHE-RSA-AES256-GCMSHA384
ECDH-ECDSA-AES128-GCMSHA256
ECDH-ECDSA-AES256-GCMSHA384
ECDHE-ECDSA-AES128-GCMSHA256
ECDHE-ECDSA-AES256-GCMSHA384
ECDHE-RSA-AES128-GCMSHA256
ECDHE-RSA-AES256-GCMSHA384
RSA
RSA
DH
RSA
DH
RSA
ECDH/ECDSA
ECDH
ECDH/ECDSA
ECDH
ECDH
ECDSA
ECDH
ECDSA
ECDH
RSA
ECDH
RSA
AESGCM
(128)
AESGCM
(256)
AESGCM
(128)
AESGCM
(256)
AESGCM
(128)
AESGCM
(256)
AESGCM
(128)
AESGCM
(256)
AESGCM
(128)
AESGCM
(256)
AEAD
AEAD
AEAD
AEAD
AEAD
AEAD
AEAD
AEAD
AEAD
AEAD
Page 18
North America
International
Radware Inc.
Radware Ltd.
Mahwah, NJ 07430
Tel: +1-888-234-5763
2015 Radware, Ltd. All Rights Reserved. Radware and all other Radware product and service names are registered
trademarks of Radware in the U.S. and other countries. All other trademarks and names are the property of their respective
owners.
Page 19