Open Bug 1444690 Opened 2 years ago

Permit certain SHA384 FIPS ciphers to be enabled by default for RSA and ECC . . .

Categories

(JSS :: Sample Code, defect)

4.4.2
defect
Not set

Tracking

(Not tracked)

UNCONFIRMED

People

(Reporter: mharmsen, Assigned: glenbeasley)

Details

User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0
Build ID: 20180118150322

Steps to reproduce:

It was determined that certain SHA384 FIPS ciphers should be enabled by default for RSA:

    TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
    TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
    TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
    TLS_RSA_WITH_AES_256_GCM_SHA384

and the following SHA384 FIPS ciphers should be enabled by default for ECC:

    TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
    TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
You need to log in before you can comment on or make changes to this bug.