What's new for IBM i 7.2
Read about new or significantly changed information for Secure Sockets Layer.
What's new as of November 2016
The 3DES cipher suites should not be used due to the Sweet32 vulnerability. PTF MF62778 removes the 3DES cipher suite from the System SSL default eligible cipher suite list. For more information, see SSL Cipher Suites.
What's new as of July 2015
The SSLv3 protocol and RC4 cipher suites should not be used due to the POODLE and Bar Mitzvah vulnerabilities. PTF SI57320 removes SSLv3 and RC4 cipher suites from the System SSL defaults. For more information, see SSL Protocols and SSL Cipher Suites.
- Added support for Transport Layer Security (TLS) protocols: TLS Version 1.2 and TLS Version 1.1
- New SSL protocols and cipher suites added to System SSL Properties and introduced new properties for signature algorithms and handshake renegotiation.
- The ability to configure multiple certificates for a secure environment was added. Multiple Certificate Selection allows a secure environment to enable Elliptic Curve Digital Signature Algorithm (ECDSA) certificates while still allowing RSA certificates.
- Added support to DCM Application Definitions for some System SSL attributes.
- Added client support for Online Certificate Status Protocol.
How to see what's new or changed
To help
you see where technical changes have been made, the information center
uses:
- The image to mark where new or changed information begins.
- The image to mark where new or changed information ends.
In PDF files, you might see revision bars (|) in the left margin of new and changed information.
To find other information about what's new or changed this release, see the Memo to users.