SSL_CTX_set_security_level.pod - OpenGrok cross reference for /freebsd-src/crypto/openssl/doc/man3/SSL_CTX_set_security

Lines Matching full:level
11  void SSL_CTX_set_security_level(SSL_CTX *ctx, int level);
12  void SSL_set_security_level(SSL *s, int level);
42 the security level to B<level>. If not set the library default security level
46 retrieve the current security level.
64 of each level is described below.
68 =item B<Level 0>
73 =item B<Level 1>
75 The security level corresponds to a minimum of 80 bits of security. Any
81 and MD5 are also forbidden at this level as they have less than 80 security
84 =item B<Level 2>
86 Security level set to 112 bits of security. As a result RSA, DSA and DH keys
88 In addition to the level 1 exclusions any cipher suite using RC4 is also
91 =item B<Level 3>
93 Security level set to 128 bits of security. As a result RSA, DSA and DH keys
95 In addition to the level 2 exclusions cipher suites not offering forward
99 =item B<Level 4>
101 Security level set to 192 bits of security. As a result RSA, DSA and
106 =item B<Level 5>
108 Security level set to 256 bits of security. As a result RSA, DSA and DH keys
119 The default security level can be configured when OpenSSL is compiled by
120 setting B<-DOPENSSL_TLS_SECURITY_LEVEL=level>. If not set then 1 is used.
123 set security level. In the past this was difficult as applications had to set
128 By setting an appropriate security level much of this complexity can be
136 then only cipher suites consistent with the security level are permissible.
153 or a certificate with a signature with SHA1 digest at level 1 using
163 represents the security level with B<SSL_CTX> or B<SSL>, respectively.