OpenSSL 1.1.1 KAS for TLS 1.2.

Malkin, Vlad Vlad.Malkin at
Fri Jul 28 21:32:48 UTC 2023

We're trying to determine what KAS is provided by OpenSSL 1.1.1 when using TLS 1.2 with TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384.

Is the KAS compliant with NIST SP 800-56a and which scheme is used.  E.g., (Cofactor) Full Unified Model ECC CDH, etc.  Is the KAS configurable and how?

Appreciate your help!!!

--Vlad Malkin, CISSP-ISSEP
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the openssl-users mailing list