SecureSocketLayer


This type is a class for model objects.

Configuration settings for using Secure Socket Layer (SSL).

Package: ssl

Classifier ID:  -1
Instance class name:  * Unspecified *
Instance class:  * Unspecified *

Reference attributes having this type:
  DataReplication.ssl
  SSLConfig.setting



Attributes Summary
keyFileName : EString The fully-qualified path to the key file which contains public keys (and perhaps private keys).
keyFilePassword : Password The password for accessing the key file.
keyFileFormat : KeyFileFormatKind The format of the key file.
clientKeyAlias : EString Choose an alias in key file to authenticate the client side of a secure socket connection. (Reserved by IBM for Future Use)
serverKeyAlias : EString Choose an alias in key file to authenticate the server side of a secure socket connection. (Reserved by IBM for Future Use)
trustFileName : EString The fully qualified path to a trust file containing the public keys.
trustFilePassword : Password A password for accessing the trust file.
trustFileFormat : KeyFileFormatKind The format of the trust file.
clientAuthentication : EBoolean Specifies that the server and client should prove their identities through an exchange of keys.
securityLevel : SSLSecurityLevel One of a preconfigured set of cipher suites with the indicated level of encryption strength.
enableCryptoHardwareSupport : EBoolean Indicate whether cryptographic token standard interface support is enabled.
enabledCiphers : EString This is a space separated list of ciphers which will be used for this SSL configuration when creating SSLContext objects.
jsseProvider : EString IBMJSSE2, IBMJSSE, IBMJSSEFIPS or "custom". Default is "IBMJSSE2".
clientAuthenticationSupported : EBoolean required, supported, disabled. Default is "disabled". Having this enabled can cause problems with the identity specification for some protocols.
sslProtocol : EString SSL_TLS, "TLS", "TSLv1", "SSLv3", "SSL". Default is "SSL_TLS".
cryptoHardware : CryptoHardwareToken @ Specifies information about the cryptographic tokens related to SSL support.
properties : Property * SecureSocketLayer attributes are represented as name-value pair at runtime. A property defined with the identical name overrides the attribute value. For example, the com.ibm.ssl.enabledCipherSuites can be defined to override the pre-configured cipher suites.
keyStore : KeyStore @ * No description is available *
trustStore : KeyStore @ * No description is available *
trustManager : TrustManager * * No description is available *
keyManager : KeyManager @ * No description is available *



Attribute Details

keyFileName  -  The fully-qualified path to the key file which contains public keys (and perhaps private keys).
    Data Type: EString
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

keyFilePassword  -  The password for accessing the key file.
    Data Type: Password
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

keyFileFormat  -  The format of the key file.
    Data Type: KeyFileFormatKind
    Default value:  unspecified
    Allowed values:
        0 - JKS
        1 - PKCS12
        2 - JCEK
        3 - JCERACFKS
    Required:  false
    Changeable:  true
    Unsettable:  true
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

clientKeyAlias  -  Choose an alias in key file to authenticate the client side of a secure socket connection. (Reserved by IBM for Future Use)
    Data Type: EString
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

serverKeyAlias  -  Choose an alias in key file to authenticate the server side of a secure socket connection. (Reserved by IBM for Future Use)
    Data Type: EString
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

trustFileName  -  The fully qualified path to a trust file containing the public keys.
    Data Type: EString
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

trustFilePassword  -  A password for accessing the trust file.
    Data Type: Password
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

trustFileFormat  -  The format of the trust file.
    Data Type: KeyFileFormatKind
    Default value:  unspecified
    Allowed values:
        0 - JKS
        1 - PKCS12
        2 - JCEK
        3 - JCERACFKS
    Required:  false
    Changeable:  true
    Unsettable:  true
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

clientAuthentication  -  Specifies that the server and client should prove their identities through an exchange of keys.
    Data Type: EBoolean
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  true
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

securityLevel  -  One of a preconfigured set of cipher suites with the indicated level of encryption strength.
    Data Type: SSLSecurityLevel
    Default value:  unspecified
    Allowed values:
        0 - HIGH
        1 - MEDIUM
        2 - LOW
        3 - CUSTOM
    Required:  false
    Changeable:  true
    Unsettable:  true
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

enableCryptoHardwareSupport  -  Indicate whether cryptographic token standard interface support is enabled.
    Data Type: EBoolean
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  true
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

enabledCiphers  -  This is a space separated list of ciphers which will be used for this SSL configuration when creating SSLContext objects.
    Data Type: EString
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

jsseProvider  -  IBMJSSE2, IBMJSSE, IBMJSSEFIPS or "custom". Default is "IBMJSSE2".
    Data Type: EString
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

clientAuthenticationSupported  -  required, supported, disabled. Default is "disabled". Having this enabled can cause problems with the identity specification for some protocols.
    Data Type: EBoolean
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

sslProtocol  -  SSL_TLS, "TLS", "TSLv1", "SSLv3", "SSL". Default is "SSL_TLS".
    Data Type: EString
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

cryptoHardware  -  Specifies information about the cryptographic tokens related to SSL support.
    Reference Type: CryptoHardwareToken @
    Containment:  true
    Container:  false
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

properties  -  SecureSocketLayer attributes are represented as name-value pair at runtime. A property defined with the identical name overrides the attribute value. For example, the com.ibm.ssl.enabledCipherSuites can be defined to override the pre-configured cipher suites.
    Reference Type: Property *
    Containment:  true
    Container:  false
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  true
    Ordered:  true
    Lower bound:  0
    Upper bound:  Unbounded
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

keyStore  -  * No description is available *
    Reference Type: KeyStore @
    Containment:  false
    Container:  false
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

trustStore  -  * No description is available *
    Reference Type: KeyStore @
    Containment:  false
    Container:  false
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

trustManager  -  * No description is available *
    Reference Type: TrustManager *
    Containment:  false
    Container:  false
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  true
    Ordered:  true
    Lower bound:  0
    Upper bound:  Unbounded
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

keyManager  -  * No description is available *
    Reference Type: KeyManager @
    Containment:  false
    Container:  false
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false



(C) COPYRIGHT International Business Machines Corp. 1996-2006