This section contains the following topics:
Open Format Cookie Encryption Algorithms
Digital Signing and Private Key Algorithms
Back Channel Communication Algorithms
Java SDK Encryption Algorithms
The open format cookie supports the following options for password-based encryptions:
PBE/SHA1/AES/CBC/PKCS12PBE-1000-128
PBE/SHA1/AES/CBC/PKCS12PBE-1000-192
PBE/SHA1/AES/CBC/PKCS12PBE-1000-256
PBE/SHA256/AES/CBC/PKCS12PBE-1000-128
PBE/SHA256/AES/CBC/PKCS12PBE-1000-192
PBE/SHA256/AES/CBC/PKCS12PBE-1000-256
PBE/SHA1/3DES_EDE/CBC/PKCS12PBE-1000-3
PBE/SHA256/3DES_EDE/CBC/PKCS12PBE-1000-3
AES128/CBC/PKCS5Padding
AES192/CBC/PKCS5Padding
AES256/CBC/PKCS5Padding
3DES_EDE/CBC/PKCS5Padding
CA SiteMinder® uses the following algorithms for partnership signing options.
RSA-V15, RSA-OEAP
3DES, AES-128, AES-256
CA SiteMinder® uses the following algorithms for Private Key generation (Certificate/Keys):
RSA
MD5withRSA, SHA1withRSA, SHA256withRSA & SHA512withRSA
For back channel communication related to HTTP-Artifact single sign-on and SAML 2.0 Single Logout, CA SiteMinder® supports the following ciphers, depending upon the FIPS mode:
RSA_With_RC4_SHA
RSA_With_RC4_MD5
RSA_With_AES_128_CBC_SHA
RSA_With_AES_256_CBC_SHA
RSA_With_AES_128_CBC_SHA
RSA_With_AES_256_CBC_SHA
The CA SiteMinder® Federation Java SDK supports the following encryption algorithms:
"AES/CBC/PKCS5Padding"
"PBE/SHA1/AES/CBC/PKCS12PBE-5-128"
AES_128
Copyright © 2014 CA.
All rights reserved.
|
|