NOTE
In many
cases, the key reason why Security Server is employed is because the host
system does not support SSL or TLS encryption. So,
it is not unusual for this setting to be set to Non-Secured.Security Server Configuration
The Host Security Tab specifies the security parameters associated with the Host IP Address and Port through which clients are proxied. This is the "host" side of the secure connection. In other words, connections between the Security Server and the Host will be secure.
The Host Security Level radio buttons set the Secure Sockets Layer version level to be negotiated.
Security ----
Non-Secured is a clear text connection without any encryption. Set this if the connection from this Security Server to the host computer or server is not encrypted.
NOTE
In many
cases, the key reason why Security Server is employed is because the host
system does not support SSL or TLS encryption. So,
it is not unusual for this setting to be set to Non-Secured.
Implicit SSL3 selects the Implicit mode of version 3 of the Secure Sockets Layer protocol. Set this if the connection from this Security Server to the host computer is encrypted using SSL v3. This is used primarily when the Client Security is Non-Secured allowing non-SSL capable clients to communicate with SSL capable hosts or servers.
Implicit TLS1 selects the Implicit mode of version 1 of the Transport Layer Security protocol. Set this if the connection from this Security Server to the host computer is encrypted using TLS v1. This is used primarily when the Client Security is Non-Secured allowing non-TLS capable clients to communicate with TLS capable hosts or servers.
Explicit SSL3 selects the Explicit mode of version 3 of the Secure Sockets Layer protocol. Set this if the connection from this Security Server to the host computer is encrypted using SSL v3. This is used primarily when the Client Security is Non-Secured allowing non-SSL capable clients to communicate with SSL capable hosts or servers.
Explicit TLS1 selects the Explicit mode of version 1 of the Transport Layer Security protocol. Set this if the connection from this Security Server to the host computer is encrypted using TLS v1. This is used primarily when the Client Security is Non-Secured allowing non-TLS capable clients to communicate with TLS capable hosts or servers.
SEE
Implicit
vs. Explicit Security
for more information.
The Encryption Strength radio buttons set the available cipher suites used when connecting to SSL or TLS capable hosts or servers.
Export Ciphers Only uses SSL supporting 56-bit keys. It is a less secure, exportable cipher suite.
All Ciphers uses any SSL cipher suite the Security Server can negotiate with the host or server.
Strong Ciphers Only uses only SSL cipher suites capable of 128 bit encryption or greater to connect. If the host or server is not capble of 128-bit or greater SSL, the connection will fail.
NOTE
This product
includes software developed by the OpenSSL Project for use in the OpenSSL
Toolkit (http://www.openssl.org/).
Related Topics: