Reference16r1:IP4/General/TLS

From innovaphone wiki

Jump to navigation Jump to search

There are also other versions of this article available: Reference13r1 | Reference13r2 | Reference13r3 | Reference16r1 (this version)

Profile

Allows configuring different selections and priorities of TLS versions and cipher suites.

legacy: Enables all supported versions and ciphers. Most recent versions and most secure ciphers have priority. Enable this profile for compatiblity with legacy endpoints.
normal: Enables only TLS 1.3 and TLS 1.2. This is the default setting if nothing is configured.
strict: Enables only TLS 1.3.

For details see Howto:Security_works_with_innovaphone#Additional_Security_Features_in_Version_16r1

Disable persistent ticket storage

If this checkmark is set, TLS 1.3 session tickets are not stored persistently in the VARS. So they are not preserved when the device is restarted.

Disable renegotiation

Disables client-initiated re-negotiation. Applies to TLS 1.0, 1.1 and 1.2. TLS 1.3 does not support renegotiation by design.

Retrieved from "https://wiki.innovaphone.com/index.php?title=Reference16r1:IP4/General/TLS&oldid=77922"