print Print
Logo: Stiftung Secure Information and Communication Technologies SIC Stiftung Secure Information and Communication Technologies SIC

iSaSiLk 5.0 with TLS 1.2 support released!

03/11/2014

The new version 5.0 of our SSL/TLS library supports TLS 1.2 and implements the TLS_FALLBACK_SCSV
cipher suite value as countermeasure against protocol downgrade attacks on the Transport Layer Security (TLS) protocol trying to enforce a fall back to SSL 3.0, which is vulnerable to a padding-oracle attack if CBC is used ("POODLE" -- Padding Oracle On Downgraded Legacy Encryption attack).

  • TLS 1.2 support according to RFC 5246
  • Support for AES Galois Counter Mode (GCM) Cipher Suites for TLS according to RFC 5288
  • Support for TLS Elliptic Curve Cipher Suites with SHA-256/384 and AES Galois Counter Mode (GCM) according to RFC 5289
  • Support for Pre-Shared Key Cipher Suites for TLS with SHA-256/384 and AES Galois Counter Mode according to RFC 5487
  • Support for ECDHE_PSK Cipher Suites for TLS according to RFC 5489
  • Support for Camellia Cipher Suites with SHA-256/384 and AES Galois Counter Mode (GCM), including PSK suites,
     according to RFC 5932/6367

See the iSaSiLk product page for a detailed list of all release features
Visit our download center to get the new versions!

Kind regards
Your SIC/IAIK Java Security Team!


print Print