I would like to know how cipher list negociation works ( see scheme below ). See a book that talk about SSL handshake. is it transparent for users ( developpers ) ? Almost. must they write it ? You do not need to write it,but you can chose it. if yes, what are the functions ? You can chose you cipher list by SSL_CTX_set_cipher_list. Also CIPHERS(1)
At 2011-02-14 22:30:12,"Aro RANAIVONDRAMBOLA" <razuk...@gmail.com> wrote: Hello, I would like to know how cipher list negociation works ( see scheme below ). I suppose it happens in handshake level. is it transparent for users ( developpers ) ? must they write it ? if yes, what are the functions ? client server TLS_RSA_WITH_AES_256_CBC_SHA TLS_RSA_WITH_AES_128_CBC_SHA TLS_ ... 3DES_... ===========================> TLS_RSA_WITH_AES_256_CBC_SHA <============================