[openssl-users] Diffie-Hellman Questions

Salz, Rich rsalz at akamai.com
Tue May 24 17:45:56 UTC 2016

>  >./openssl ciphers -v 'ALL:aNULL' |grep ECDH |grep "Au=None"
> AECDH-AES256-SHA        SSLv3 Kx=ECDH     Au=None Enc=AES(256)  Mac=SHA1
> AECDH-AES128-SHA        SSLv3 Kx=ECDH     Au=None Enc=AES(128)  Mac=SHA1
> AECDH-RC4-SHA           SSLv3 Kx=ECDH     Au=None Enc=RC4(128)  Mac=SHA1
> AECDH-DES-CBC3-SHA      SSLv3 Kx=ECDH     Au=None Enc=3DES(168)
> Mac=SHA1
> AECDH-NULL-SHA          SSLv3 Kx=ECDH     Au=None Enc=None      Mac=SHA1
> 1) What arg to SSL_CTX_set_cipher_list() to I need to use to get these?
> I previously tried "kEECDH:kEDH" and that didn't work.

Use one of the names in the first column.
> 2) These ciphers all report as SSLv3.

That is the protocol version where they were first defined.

More information about the openssl-users mailing list