Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

List of supported ciphers in Deep Security

    • Updated:
    • 8 Mar 2019
    • Product/Version:
    • Deep Security 10.0
    • Platform:
    • N/A N/A
Summary

When a customer uses an unsupported cipher in his environment, the following entry in Deep Security event or logs shows:

Unsupported Cipher ... cipher = xxxx

To avoid getting the same message in the logs, know the supported ciphers in Deep Security.

Details
Public

When you activate the SSL configuration by importing the server's SSL certificate in an agent, the DPI engine will see an unencrypted plain text data. The list of rules, however, matches the pattern on the SSL stream, and not on the unencrypted plain text data. This is the reason why certain rules do not work when SSL certificate is imported in an agent.

Since not all customers would perform the scenario above, Recommendation Scan will still suggest rules based on the patch level of a host. If you have enabled SSL inspection and the rules are recommended at the same time, it will not cause any real harm. The engine will not be able to see the SSL data but only the unencrypted stream of data.

Deep Security Agent 10.0 up to Update 15 supports these TLS 1.2 cipher suites:

  • TLS_RSA_WITH_AES_256_CBC_SHA256
  • TLS_RSA_WITH_AES_128_CBC_SHA256

Deep Security Agent 10.0 Update 16 and later updates support these TLS 1.2 cipher suites, out-of-box:

  • TLS_RSA_WITH_AES_256_CBC_SHA256
  • TLS_RSA_WITH_AES_128_CBC_SHA256

Deep Security Agent 10.0 Update 16 and later updates support these TLS 1.2 cipher suites, if strong cipher suites are enabled:

  • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
  • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
  • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256

For more details, refer to Deep Security Help Center article: Supported cipher suites for agent-manager communication.

Premium
Internal
Rating:
Category:
SPEC
Solution Id:
1105304
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.