Encryption

SSL supports these encryption algorithms:

  • Ephemeral Diffie-Hellman: This type is used for anonymous SSL, which does not require a certificate or a private key.
  • Triple-DES: This type is used for user name/password SSL, which requires both a certificate and a private key. Triple-DES is so-called because it repeats DES (Defense Encryption Standard) encryption three times. This effectively doubles the length of the original DES key from 56 bits to 112 bits.

TLS is used for providing communications security over a computer network, and requires both a certificate and a private key. The certificate and the private key are in two separate files. These are encrypted using algorithms that conform to a standard called X.509. The signature algorithm of the public key is SHA512withRSA.

The algorithm that is used to encrypt the private key is PBEWithHmacSHA512AndAES_256.