Highlighted
Super Contributor.
Super Contributor.
259 views

Latest smartconnector 7.15.x and Logger 7.0.x ciphers

Jump to solution

Hi,

Would like to check if anyone encountered the same issue:

Currently the latest ciphers supported by both windows smartconnectors 7.15.x and software linux logger 7.0.x is only 

TLS_RSA_WITH_AES_128_GCM_SHA256
TLS_RSA_WITH_AES_128_CBC_SHA

Both are considered weak and non of the recommended TLS1.2 ciphers in https://ciphersuite.info is supported. (Although listed as secure, they are not recommended and flagged out by Nessus scans)

Is there any way to use stronger ciphers such as ECDHE_ECDSA?

Thanks,

Kevin

0 Likes
1 Solution

Accepted Solutions
Highlighted
Super Contributor.
Super Contributor.
Only 1 new recommended cipher supported by both latest smartconnector and logger 7.1 from support.

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 / ECDHE-RSA-AES128-GCM-SHA256

View solution in original post

0 Likes
3 Replies
Highlighted
Super Contributor.
Super Contributor.
Logger 7.1 released on 31 Jul 2020 mentioned the following :

"Cipher Suites have been updated."

with no details.
0 Likes
Highlighted
Super Contributor.
Super Contributor.
Only 1 new recommended cipher supported by both latest smartconnector and logger 7.1 from support.

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 / ECDHE-RSA-AES128-GCM-SHA256

View solution in original post

0 Likes
Highlighted
Knowledge Partner Knowledge Partner
Knowledge Partner

from Release Notes FW 8.0

https://community.microfocus.com/t5/ArcSight-Connectors/SmartConnector-Release-Notes-8-0-0-8322/ta-p/2814561

CON-23376 Removed the CBC cipher suites below:
- TLS_RSA_WITH_AES_128_CBC_SHA
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA

Added the following ECDHE cipher:
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.