Why not SHA256 in cipher suite?

Daniel Kahn Gillmor dkg at fifthhorseman.net
Thu Aug 27 22:30:53 CEST 2009

On 08/20/2009 07:15 AM, Xizhi Zhu wrote:
> I found that in GnuTLS, SHA256 is not used in any cipher suites (i.e.
> not listed in gnutls-cli -l). However, they are defined in RFC 5246,
> e.g. TLS_RSA_WITH_AES_128_CBC_SHA256 (0x00,0x3C). I wonder why they are
> not supported in GnuTLS as they can provide a higher security level.

I think there is active development work starting on the SHA256 suites.
 Please see:




-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 890 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20090827/36335fdc/attachment.pgp>

More information about the Gnutls-devel mailing list