public final class TlsPolicy extends Object
Modifier and Type | Field and Description |
---|---|
String[] |
ciphers
Allowable TLS ciphers that the client can use for secure connections.
|
boolean |
encryptOnly
Encrypt data on TLS socket only.
|
String[] |
protocols
Allowable TLS protocols that the client can use for secure connections.
|
BigInteger[] |
revokeCertificates
Reject certificates whose serial numbers match a serial number in this array.
|
Constructor and Description |
---|
TlsPolicy() |
public String[] protocols
SSLSocket.getSupportedProtocols()
Multiple protocols can be specified. Example:
TlsPolicy policy = new TlsPolicy();
policy.protocols = new String[] {"TLSv1", "TLSv1.1", "TLSv1.2"};
Default: TLSv1.2 (Only allow TLSv1.2 protocol)public String[] ciphers
SSLSocket.getSupportedCipherSuites()
Multiple ciphers can be specified.
Default: null (Allow default ciphers defined by JVM)public BigInteger[] revokeCertificates
public boolean encryptOnly
The server should also be configured so anonymous ciphers are allowed.
tls-mode encrypt-only tls-cipher-suite aNULLDefault: false
Copyright © 2012–2017 Aerospike, Inc. All rights reserved.