What's new for IBM i 7.1
Read about new or significantly changed information for Secure Sockets Layer.
What's new as of November 2016
The 3DES cipher suites should not be used due to the Sweet32 vulnerability. PTF MF62779 removes the 3DES cipher suite from the System SSL default eligible cipher suite list. For more information, see SSL Cipher Suites.
PTF MF62779 also adds TLSv1.1 and TLSv1.2 to the System SSL default eligible protocol list if the protocols are enabled in the System SSL supported protocol list. For more information, see SSL Protocols.
What's new as of July 2015
The SSLv3 protocol and RC4 cipher suites should not be used due to the POODLE and Bar Mitzvah vulnerabilities. PTF MF60335 removes SSLv3 and RC4 cipher suites from the System SSL defaults. For more information, see SSL Protocols and SSL Cipher Suites.
PTF SI57332 allows TLSv1.2 and TLSv1.1 to be added to the System SSL default protocol list by using System Service Tools (SST) Advanced Analysis Command SSLCONFIG. For more information, see The SSLCONFIG macro.
What's new as of February 2013
IBM® i 7.1 Technology Refresh 6 (TR6) and PTF SI48659 and its requisites made the following updates:- Added support for Transport Layer Security (TLS) protocols: TLS Version 1.2 and TLS Version 1.1
- New SSL protocols and cipher suites added to System SSL Properties and introduced new properties for signature algorithms and handshake renegotiation.
- Added support to DCM Application Definitions for some System SSL attributes.
- Added client support for Online Certificate Status Protocol.
How to see what's new or changed
- The image to mark where new or changed information begins.
- The image to mark where new or changed information ends.
In PDF files, you might see revision bars (|) in the left margin of new and changed information.
To find other information about what's new or changed this release, see the Memo to users.