tls-1.4.1: TLS/SSL protocol native implementation (Server and Client)

LicenseBSD-style
MaintainerVincent Hanquez <vincent@snarc.org>
Stabilityexperimental
Portabilityunknown
Safe HaskellNone
LanguageHaskell98

Network.TLS.Extra.Cipher

Contents

Description

 

Synopsis

cipher suite

ciphersuite_default :: [Cipher] Source #

All AES ciphers supported ordered from strong to weak. This choice of ciphersuites should satisfy most normal needs. For otherwise strong ciphers we make little distinction between AES128 and AES256, and list each but the weakest of the AES128 ciphers ahead of the corresponding AES256 ciphers.

ciphersuite_all :: [Cipher] Source #

Warning: This ciphersuite list contains RC4. Use ciphersuite_strong or ciphersuite_default instead.

The default ciphersuites + some not recommended last resort ciphers.

ciphersuite_medium :: [Cipher] Source #

Deprecated: Use ciphersuite_strong or ciphersuite_default instead.

list of medium ciphers.

ciphersuite_strong :: [Cipher] Source #

The strongest ciphers supported. For ciphers with PFS, AEAD and SHA2, we list each AES128 variant right after the corresponding AES256 variant. For weaker constructs, we use just the AES256 form.

ciphersuite_unencrypted :: [Cipher] Source #

all unencrypted ciphers, do not use on insecure network.

ciphersuite_dhe_rsa :: [Cipher] Source #

DHE-RSA cipher suite

ciphersuite_dhe_dss :: [Cipher] Source #

individual ciphers

cipher_null_SHA1 :: Cipher Source #

unencrypted cipher using RSA for key exchange and SHA1 for digest

cipher_AES128_SHA1 :: Cipher Source #

AES cipher (128 bit key), RSA key exchange and SHA1 for digest

cipher_AES256_SHA1 :: Cipher Source #

AES cipher (256 bit key), RSA key exchange and SHA1 for digest

cipher_AES128_SHA256 :: Cipher Source #

AES cipher (128 bit key), RSA key exchange and SHA256 for digest

cipher_AES256_SHA256 :: Cipher Source #

AES cipher (256 bit key), RSA key exchange and SHA256 for digest

cipher_AES128GCM_SHA256 :: Cipher Source #

AESGCM cipher (128 bit key), RSA key exchange. The SHA256 digest is used as a PRF, not as a MAC.

cipher_AES256GCM_SHA384 :: Cipher Source #

AESGCM cipher (256 bit key), RSA key exchange. The SHA384 digest is used as a PRF, not as a MAC.

cipher_DHE_RSA_AES128_SHA1 :: Cipher Source #

AES cipher (128 bit key), DHE key exchanged signed by RSA and SHA1 for digest

cipher_DHE_RSA_AES256_SHA1 :: Cipher Source #

AES cipher (256 bit key), DHE key exchanged signed by RSA and SHA1 for digest

cipher_DHE_RSA_AES128_SHA256 :: Cipher Source #

cipher_DHE_RSA_AES256_SHA256 :: Cipher Source #

cipher_DHE_DSS_AES128_SHA1 :: Cipher Source #

AES cipher (128 bit key), DHE key exchanged signed by DSA and SHA1 for digest

cipher_DHE_DSS_AES256_SHA1 :: Cipher Source #

AES cipher (256 bit key), DHE key exchanged signed by DSA and SHA1 for digest

cipher_DHE_RSA_AES128GCM_SHA256 :: Cipher Source #

cipher_DHE_RSA_AES256GCM_SHA384 :: Cipher Source #

cipher_ECDHE_RSA_AES128GCM_SHA256 :: Cipher Source #

cipher_ECDHE_RSA_AES256GCM_SHA384 :: Cipher Source #

cipher_ECDHE_RSA_AES128CBC_SHA256 :: Cipher Source #

cipher_ECDHE_RSA_AES128CBC_SHA :: Cipher Source #

cipher_ECDHE_RSA_AES256CBC_SHA :: Cipher Source #

cipher_ECDHE_RSA_AES256CBC_SHA384 :: Cipher Source #

cipher_ECDHE_ECDSA_AES128CBC_SHA :: Cipher Source #

cipher_ECDHE_ECDSA_AES256CBC_SHA :: Cipher Source #

cipher_ECDHE_ECDSA_AES128CBC_SHA256 :: Cipher Source #

cipher_ECDHE_ECDSA_AES256CBC_SHA384 :: Cipher Source #

cipher_ECDHE_ECDSA_AES128GCM_SHA256 :: Cipher Source #

cipher_ECDHE_ECDSA_AES256GCM_SHA384 :: Cipher Source #

obsolete and non-standard ciphers

cipher_RSA_3DES_EDE_CBC_SHA1 :: Cipher Source #

3DES cipher (168 bit key), RSA key exchange and SHA1 for digest

cipher_RC4_128_MD5 :: Cipher Source #

RC4 cipher, RSA key exchange and MD5 for digest

cipher_RC4_128_SHA1 :: Cipher Source #

RC4 cipher, RSA key exchange and SHA1 for digest

cipher_null_MD5 :: Cipher Source #

unencrypted cipher using RSA for key exchange and MD5 for digest

cipher_DHE_DSS_RC4_SHA1 :: Cipher Source #