version 1.102, 2001/03/04 12:54:04 |
version 1.103, 2001/03/04 18:21:28 |
|
|
However, when the daemon starts, it does not generate a server key. |
However, when the daemon starts, it does not generate a server key. |
Forward security is provided through a Diffie-Hellman key agreement. |
Forward security is provided through a Diffie-Hellman key agreement. |
This key agreement results in a shared session key. |
This key agreement results in a shared session key. |
The rest of the session is encrypted |
The rest of the session is encrypted using a symmetric cipher, currently |
using a symmetric cipher, currently |
Blowfish, 3DES, CAST128, Arcfour, 128 bit AES, or 256 bit AES. |
Blowfish, 3DES or CAST128 in CBC mode or Arcfour. |
|
The client selects the encryption algorithm |
The client selects the encryption algorithm |
to use from those offered by the server. |
to use from those offered by the server. |
Additionally, session integrity is provided |
Additionally, session integrity is provided |