Hi, I'm trying to understand what the various values in TLS1.h mean for the cipher selections.
I'm talking about: > #define TLS1_TXT_RSA_EXPORT1024_WITH_RC4_56_MD5 "EXP1024-RC4-MD5" > #define TLS1_TXT_RSA_EXPORT1024_WITH_RC2_CBC_56_MD5 > "EXP1024-RC2-CBC-MD5" > #define TLS1_TXT_RSA_EXPORT1024_WITH_DES_CBC_SHA "EXP1024-DES-CBC-SHA" > #define TLS1_TXT_DHE_DSS_EXPORT1024_WITH_DES_CBC_SHA > "EXP1024-DHE-DSS-DES-CBC-SHA" > #define TLS1_TXT_RSA_EXPORT1024_WITH_RC4_56_SHA "EXP1024-RC4-SHA" > #define TLS1_TXT_DHE_DSS_EXPORT1024_WITH_RC4_56_SHA > "EXP1024-DHE-DSS-RC4-SHA" > #define TLS1_TXT_DHE_DSS_WITH_RC4_128_SHA "DHE-DSS-RC4-SHA" > > /* AES ciphersuites from RFC3268 */ > #define TLS1_TXT_RSA_WITH_AES_128_SHA "AES128-SHA" > #define TLS1_TXT_DH_DSS_WITH_AES_128_SHA "DH-DSS-AES128-SHA" > #define TLS1_TXT_DH_RSA_WITH_AES_128_SHA "DH-RSA-AES128-SHA" > #define TLS1_TXT_DHE_DSS_WITH_AES_128_SHA "DHE-DSS-AES128-SHA" > #define TLS1_TXT_DHE_RSA_WITH_AES_128_SHA "DHE-RSA-AES128-SHA" > #define TLS1_TXT_ADH_WITH_AES_128_SHA "ADH-AES128-SHA" > > #define TLS1_TXT_RSA_WITH_AES_256_SHA "AES256-SHA" > #define TLS1_TXT_DH_DSS_WITH_AES_256_SHA "DH-DSS-AES256-SHA" > #define TLS1_TXT_DH_RSA_WITH_AES_256_SHA "DH-RSA-AES256-SHA" > #define TLS1_TXT_DHE_DSS_WITH_AES_256_SHA "DHE-DSS-AES256-SHA" > #define TLS1_TXT_DHE_RSA_WITH_AES_256_SHA "DHE-RSA-AES256-SHA" > #define TLS1_TXT_ADH_WITH_AES_256_SHA "ADH-AES256-SHA" I'm guessing ADH means Anonymous Diffie Hellman, right? and AES256 is the AES encryption cipher w/ a 256 bit cipher key? What is DHE_DSS vs. DHE_RSA and things like that? Can anybody point me to where these are defined? Is there any benefit of one over the other? -dave
