DATA_SSL_CIPHER_SUITES - UCMD Server configuration option

Description

The DATA_SSL_CIPHER_SUITES option specifies one or more SSL/TLS 1.3 specific cipher suites that are acceptable to use for network communications on the data session, which is used for standard I/O file transmission.

This option is specific to TLS 1.3. To configure ciphers for TLS 1.2 and earlier, see the data_ssl_cipher_list option.

Usage

Method

Syntax

IBM i

UNIX

Windows

z/OS

Configuration File Keyword

data_ssl_cipher_suites cipherlist


(tick)

(tick)


Manager Override

n/a





The option is NOT currently supported on HP-UX

Values

cipherlist is a comma-separated list of SSL/TLS cipher suites. The following table identifies the list of SSL/TLS cipher suites supported for this option.

The list is in default order, with the most preferred suite first and the least preferred suite last.

Cipher Suite

Description

TLS_AES_256_GCM_SHA384

256-bit AES encryption in Galois Counter Mode, SHA-2 384-bit message digest

TLS_CHACHA20_POLY1305_SHA256

256-bit CHACHA encryption with POLY1305 message authentication, SHA-2 256-bit message digest

TLS_AES_128_GCM_SHA256

128-bit AES encryption in Galois Counter Mode, SHA-2 256-bit message digest