Working with CipherSpecs

 

The CipherSpec identifies the combination of encryption algorithm and hash function used by an SSL or TLS connection. A CipherSpec forms part of a CipherSuite, which identifies the key exchange and authentication mechanism as well as the encryption and hash function algorithms.

Note that WebSphere MQ supports both SSL and TLS CipherSpecs.

WebSphere MQ supports only the RSA key exchange and authentication algorithms. The size of the key used during the SSL handshake can depend on the digital certificate you use, but some of the CipherSpecs supported by WebSphere MQ include a specification of the handshake key size. Note that larger handshake key sizes provide stronger authentication. With smaller key sizes, the handshake is faster.

For more information, refer to CipherSuites and CipherSpecs and An overview of the SSL handshake.

 

Parent topic:

Working with WebSphere MQ SSL support


sy12860_