Because GSKit uses CipherSpecs rather than CipherSuites, the JSSE-style CipherSuite names specified in the XMSC_WPM_SSL_CIPHER_SUITE property must be mapped to the GSKit-style CipherSpec names.
Table 1 lists the equivalent CipherSpec for each recognized CipherSuite.
CipherSuite | CipherSpec equivalent |
---|---|
SSL_RSA_WITH_NULL_MD5 | NULL_MD5 |
SSL_RSA_EXPORT_WITH_RC2_CBC_40_MD5 | RC2_MD5_EXPORT |
SSL_RSA_EXPORT_WITH_RC4_40_MD5 | RC4_MD5_EXPORT |
SSL_RSA_WITH_RC4_128_MD5 | RC4_MD5_US |
SSL_RSA_WITH_NULL_SHA | NULL_SHA |
SSL_RSA_EXPORT1024_WITH_RC4_56_SHA | RC4_56_SHA_EXPORT1024 |
SSL_RSA_WITH_RC4_128_SHA | RC4_SHA_US |
SSL_RSA_WITH_DES_CBC_SHA | DES_SHA_EXPORT |
SSL_RSA_EXPORT1024_WITH_DES_CBC_SHA | DES_SHA_EXPORT1024 |
SSL_RSA_FIPS_WITH_DES_CBC_SHA | FIPS_WITH_DES_CBC_SHA |
SSL_RSA_WITH_3DES_EDE_CBC_SHA | TRIPLE_DES_SHA_US |
SSL_RSA_FIPS_WITH_3DES_EDE_CBC_SHA | FIPS_WITH_3DES_EDE_CBC_SHA |
TLS_RSA_WITH_DES_CBC_SHA | TLS_RSA_WITH_DES_CBC_SHA |
TLS_RSA_WITH_3DES_EDE_CBC_SHA | TLS_RSA_WITH_3DES_EDE_CBC_SHA |
TLS_RSA_WITH_AES_128_CBC_SHA | TLS_RSA_WITH_AES_128_CBC_SHA |
TLS_RSA_WITH_AES_256_CBC_SHA | TLS_RSA_WITH_AES_256_CBC_SHA |