openssl-ciphers.pod.in - OpenGrok cross reference for /freebsd/crypto/openssl/doc/man1/openssl-ciphers.pod.in

Lines Matching full:suites
64 When combined with B<-s> includes cipher suites which require PSK.
68 When combined with B<-s> includes cipher suites which require SRP. This option
122 It can represent a list of cipher suites containing a certain algorithm, or
123 cipher suites of a certain type. For example B<SHA1> represents all ciphers
124 suites using the digest algorithm SHA1 and B<SSLv3> represents all SSL v3
127 Lists of cipher suites can be combined in a single cipher string using the
129 B<SHA1+DES> represents all cipher suites containing the SHA1 B<and> the DES
176 necessary). Note that RC4 based cipher suites are not built into OpenSSL by
181 All cipher suites except the B<eNULL> ciphers (which must be explicitly enabled
183 As of OpenSSL 1.0.0, the B<ALL> cipher suites are sensibly ordered by default.
187 The cipher suites not enabled by B<ALL>, currently B<eNULL>.
191 "High" encryption cipher suites. This currently means those with key lengths
192 larger than 128 bits, and some cipher suites with 128-bit keys.
196 "Medium" encryption cipher suites, currently some of those using 128 bit
201 "Low" encryption cipher suites, currently those using 64 or 56 bit
202 encryption algorithms but excluding export cipher suites.  All these
203 cipher suites have been removed as of OpenSSL 1.1.0.
216 The cipher suites offering no authentication. This is currently the anonymous
217 DH algorithms and anonymous ECDH algorithms. These cipher suites are vulnerable
227 Cipher suites using RSA key exchange or authentication. B<RSA> is an alias for
232 Cipher suites using static DH key agreement and DH certificates signed by CAs
234 All these cipher suites have been removed in OpenSSL 1.1.0.
238 Cipher suites using ephemeral DH key agreement, including anonymous cipher
239 suites.
243 Cipher suites using authenticated ephemeral DH key agreement.
247 Anonymous DH cipher suites, note that this does not include anonymous Elliptic
248 Curve DH (ECDH) cipher suites.
252 Cipher suites using ephemeral ECDH key agreement, including anonymous
253 cipher suites.
257 Cipher suites using authenticated ephemeral ECDH key agreement.
261 Anonymous Elliptic Curve Diffie-Hellman cipher suites.
265 Cipher suites using DSS authentication, i.e. the certificates carry DSS keys.
269 Cipher suites effectively using DH authentication, i.e. the certificates carry
271 All these cipher suites have been removed in OpenSSL 1.1.0.
275 Cipher suites using ECDSA authentication, i.e. the certificates carry ECDSA
280 Lists cipher suites which are only supported in at least TLS v1.2, TLS v1.0 or
282 Note: there are no cipher suites specific to TLS v1.1.
284 then both TLSv1.0 and SSLv3.0 cipher suites are available.
287 TLS, they only affect the list of available cipher suites.
291 cipher suites using 128 bit AES, 256 bit AES or either 128 or 256 bit AES.
295 AES in Galois Counter Mode (GCM): these cipher suites are only supported
301 cipher suites are only supported in TLS v1.2. B<AESCCM> references CCM
302 cipher suites using both 16 and 8 octet Integrity Check Value (ICV)
307 Cipher suites using 128 bit ARIA, 256 bit ARIA or either 128 or 256 bit
312 Cipher suites using 128 bit CAMELLIA, 256 bit CAMELLIA or either 128 or 256 bit
317 Cipher suites using ChaCha20.
321 Cipher suites using triple DES.
325 Cipher suites using DES (not triple DES).
326 All these cipher suites have been removed in OpenSSL 1.1.0.
330 Cipher suites using RC4.
334 Cipher suites using RC2.
338 Cipher suites using IDEA.
342 Cipher suites using SEED.
346 Cipher suites using MD5.
350 Cipher suites using SHA1.
354 Cipher suites using SHA256 or SHA384.
358 Cipher suites using GOST R 34.10 (either 2001 or 94) for authentication
363 Cipher suites using GOST R 34.10-2001 authentication.
367 Cipher suites, using VKO 34.10 key exchange, specified in the RFC 4357.
371 Cipher suites, using HMAC based on GOST R 34.11-94.
375 Cipher suites using GOST 28147-89 MAC B<instead of> HMAC.
379 All cipher suites using pre-shared keys (PSK).
383 Cipher suites using PSK key exchange, ECDHE_PSK, DHE_PSK or RSA_PSK.
387 Cipher suites using PSK authentication (currently all PSK modes apart from
401 used and only the two suite B compliant cipher suites
407 All cipher suites using encryption algorithm in Cipher Block Chaining (CBC)
408 mode. These cipher suites are only supported in TLS v1.2 and earlier. Currently
416 The following lists give the SSL or TLS cipher suites names from the
421 =head2 SSL v3.0 cipher suites
442 =head2 TLS v1.0 cipher suites
459 =head2 AES cipher suites from RFC3268, extending TLS v1.0
477 =head2 Camellia cipher suites from RFC4132, extending TLS v1.0
495 =head2 SEED cipher suites from RFC4162, extending TLS v1.0
507 =head2 GOST cipher suites from draft-chudov-cryptopro-cptls, extending TLS v1.0
518 =head2 GOST cipher suites, extending TLS v1.2
531 =head2 Additional Export 1024 and other cipher suites
537 =head2 Elliptic curve cipher suites
557 =head2 TLS v1.2 cipher suites
614 =head2 ARIA cipher suites from RFC6209, extending TLS v1.2
635 =head2 Camellia HMAC-Based cipher suites from RFC6367, extending TLS v1.2
642 =head2 Pre-shared keying (PSK) cipher suites
716 =head2 ChaCha20-Poly1305 cipher suites, extending TLS v1.2
726 =head2 TLS v1.3 cipher suites