Table of ContentsView in Frames

Supported hashing and encryption algorithms for TLS libraries

Client applications use the HTTPS protocol to communicate with the StorageGRID Webscale system over a network connection that uses Transport Layer Security (TLS). The StorageGRID Webscale supports a limited set of hashing and encryption algorithms from the TLS libraries that client applications can use when establishing a TLS session. When you are setting up the communication processes, it is important for you to know which security algorithms the system uses.

The StorageGRID Webscale system supports the following cipher suite security algorithms:

Based on system measurements and general security domain knowledge, AES128‐SHA and AES256‐SHA provide reasonable security without requiring inordinate amounts of computational resources. The choice between AES128‐SHA and AES256‐SHA depends on the client application requirements that balance performance with encryption security.

Note: You should use one of the NULL ciphers if encryption is not required and you want to eliminate the overhead associated with encryption. The client application must explicitly request the NULL cipher.