Re: What version of SSL in 5.0 Web Server

CE 5.0 supports SSL 2.0, SSL 3.0 and TLS 1.0 (a.k.a SSL 3.1) which are
collectively referred to as SSL protocols. What difficulties are you seeing
with TLS connections to the webserver? By default all protocols includign
TLS should be enabled. The registry keys under
HKLM\Comm\SecurityProviders\SCHANNEL\Protocols are only used to modify this
default behavior.

Dylan DSilva
Software Development Engineer
Microsoft Corporation

This posting is provided "AS IS" with no warranties, and confers no rights.
You assume all risk for your use. © 2007 Microsoft Corporation. All rights
reserved.

"Tom" <tomkuhn@xxxxxxxxxx> wrote in message
news:1171570708.208108.57200@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I must admit I am quite confused on the issue of SSL and TLS
versions. I know there was a SSL 2.0, SSL 3.0, and TLS 1.0. Our
requirements for encryption (See Below) state that we need TLS or SSL
3.1. CE 5.0 specifies that the web server supports SSL, but I am not
seeing anything for TLS. The web server is currently not working over
a TLS connection. It will work over a SSL 3.0 connection though. I
have been setting these in the HKLM\Comms\SecurityProviders\SChannel
\Protocols. Does CE support TLS or SSL 3.1 for the Web Server?



Requirements:

SSL/TSL v3.0 and its successor SSL/TLS v3.1 are protocols that provide
data security between application protocols such as HTTP (the protocol
used by the Web) and the networking protocol TCP/IP. TLS establishes a
secure, encrypted connection between the server and a TLS-capable
browser, and then encrypts and decrypts information as it is sent and
received. SSL v3.0 and earlier versions are not NIST FIPS 140-2
validated for FIPS mode use. TLS or SSL v3.1 is NIST validated for
FIPS Mode use; therefore, TLS or SSL v3.1 is the required protocol for
encrypting HTTP sessions. The TLS protocol does provide a mechanism
that allows for backward compatibility.


Thanks,

Tom



.

Relevant Pages

  • Re: What version of SSL in 5.0 Web Server
    ... the registry keys have SSL 3.0 client/Sever Enabled and TLS ... CE 5.0 specifies that the web server supports SSL, ... used by the Web) and the networking protocol TCP/IP. ...
    (microsoft.public.windowsce.platbuilder)
  • Re: What version of SSL in 5.0 Web Server
    ... I rebooted the device so the Web server is ... SSL in Firefox so that only TLS is running. ... data security between application protocols such as HTTP (the protocol ...
    (microsoft.public.windowsce.platbuilder)
  • Re: What version of SSL in 5.0 Web Server
    ... the registry keys have SSL 3.0 client/Sever Enabled and TLS ... CE 5.0 specifies that the web server supports SSL, ... used by the Web) and the networking protocol TCP/IP. ...
    (microsoft.public.windowsce.platbuilder)
  • Re: followup to SSL+LTC
    ... > Could someone please explain the scope of SSL and TLS. ... SSL stands for Secure Socket Layer. ... authenticates the server to the client. ... cert against a known CA cert and uses the server cert's public ...
    (sci.crypt)
  • RE: IIS - use SSL 3.0 only
    ... SSL 3.0 for IIS 6.0 If I am off base, please don't hesitate to let me know. ... Microsoft is providing this information as a convenience to you. ... If the server and the client have multiple protocols in common, ...
    (microsoft.public.windows.server.sbs)