All geek questions in one place

HTTPS and data integrity

I haven't researched HTTPS a lot yet, so I have a question about this.

Is data integrity using HTTPS maintained or only confidentiality? For example, when downloading files, does HTTPS guarantee that no one can change the data at boot time, or does it only guarantee that no one can read it?

+3
source share
2 answers

For the most part, yes, but for maximum security, I would recommend in addition to using HTTPS, I would recommend setting up an SSL server configuration to use a signed certificate and using the following SSL configurations:

SSLProtocol -ALL +SSLv3 +TLSv1
SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:!LOW:!SSLv2:!EXPORT

Also use SSL version 3. If possible,

+1
source

Short answer: Yes

:

  • , SHA, SHA-2 (256 394) MD5 (, !), (HMAC). .

: TLS_RSA_WITH_AES_128_CBC_ SHA256

  • (AEAD), AES-GCM (AES-CCM, AES-EAX ) CHACHA20-POLY1305 ().

: TLS_ECDHE_RSA_WITH_ CHACHA20_POLY1305 _SHA256

, , SHA256 HMAC, PRF ( ).

+1
source

Source: https://habr.com/ru/post/1795368/

More articles:


All Articles