Reputation: 31
Can I use TLSv1.3 ciphers in TLSv1.2 session?
Windows IIS Server 10 supported TLS_AES_256_GCM_SHA384 on TLS 1.3. But my application max TLS version TLS 1.2 . I can't send request to server due to tls mismatch. TLS_AES_256_GCM_SHA384 is not found in my app. How can I use this CipherSuite ?
Note : My android project language is Java.
Upvotes: 0
Views: 1125
Answers (1)
Reputation: 1858
The TLSv1.3 approach to ciphers isn't directly compatible with TLSv1.2, because the key exchange and signature is now treated separately (which means you can't just use a TLSv1.3 cipher in TLSv1.2 and conversely).
You can though pick equivalent ciphers for TLSv1.2 that match the functionality of TLSv1.3. All the options are listed on the IEEE site here.
If however all you are looking for is a strong set of options that support both TLSv1.3 and TLSv1.2, then I'd recommend taking a look at the Mozilla SSL configuration generator, which makes the process trivial to follow.
Upvotes: 0
Related Questions
- How to use TLS 1.2 in Java 6
- TLS 1.2 support with java6
- Is it possible to set the set cipher suite for a TLS connection when using TLSv1.3?
- TLSv1.3 - is it available now in Java 8?
- Enable TLSv1 ciphers in Spring Boot
- Is TLSv1.3 supported in OpenJDK 11 under Ubuntu?
- How to enable TLSv1.2 in JAVA 7u80 client
- TLS 1.2 on Java 6
- Will SSLContext.getInstance("TLS") supports TLS v1.1 and TLS v1.2 also?
- how to use TLSv1.2 in java