Published date: 30.03.2010
Last Update: 23.02.2011
Author: Adrian F. Dimcev, contact@carbonwind.net
With support for server side
fingerprinting from SSL Labs https://www.ssllabs.com/
ANNEX A1
Common browsers/libraries/servers and the associated cipher
suites implemented
(work in progress)
Provided “as is”, without any warranty.
Work in progress, content incomplete and not reviewed yet.
Contents
1.1. GnuTLS 2.8.6 Cipher
Suites
1.2. mod_gnutls
0.5.5(GnuTLS 2.8.6 + Apache 2.2.15) Cipher Suites
2.1. Safari 5.0.x on Mac
OS X 10.5.8 Cipher Suites
2.2. Safari 5.0.x on Mac
OS X 10.6.6 Cipher Suites
3. NSS(Network Security
Services)
3.2. Firefox 3.6.x Cipher
Suites
3.3. Google Chrome 5 Beta
on Linux Cipher Suites
3.4. Google Chrome 9.0.x
Cipher Suites
3.5. mod_nss 1.0.8 Cipher
Suites
3.6 Firefox 3.6.x on
Fedora 14
4.1. OpenSSL 0.9.8m Cipher
Suites
4.2. OpenSSL 1.0.0 Cipher
Suites
4.3. mod_ssl (Apache
2.2.15 + OpenSSL 0.9.8m) Cipher Suites
4.4. mod_ssl (Apache 2.3.5
Alpha + OpenSSL 1.0.0) Cipher Suites
6.1. Schannel(NT
5.1.2600) Cipher Suites
6.1.1. IE6 (Windows XP
SP3 / Windows XP x64 SP2) Cipher Suites
6.1.2. IE7 (Windows XP
SP3 / Windows XP x64 SP2) Cipher Suites
6.1.3. IE8 (Windows XP
SP3 / Windows XP x64 SP2) Cipher Suites
6.1.4. IIS 6.0 (Windows
Server 2003 R2 SP2)
6.1.5. Safari 5.0.x
(Windows XP SP3 / Windows XP x64 SP2) Cipher Suites
6.2. Schannel(NT
6.0.6002) Cipher Suites
6.2.1. IE7 (Windows Vista
SP2) Cipher Suites
6.2.2. IE8 (Windows Vista
SP2) Cipher Suites
6.2.3. IIS 7.0 (Windows
Server 2008 SP2) Cipher Suites.
6.2.4. Safari 5.0.x
(Windows Vista SP2) Cipher Suites
6.3. Schannel (NT
6.1.7600) Cipher Suites
6.3.1. IE8 (Windows 7)
Cipher Suites
6.3.2. IIS 7.5 (Windows
Server 2008 R2) Cipher Suites.
6.3.3. Safari 5.0.x
(Windows 7) Cipher Suites
According to its web site, GnuTLS is a project that aims to develop a library which provides a secure layer, over a reliable transport layer.
It supports SSL 3.0, TLS 1.0, TLS 1.1 and TLS 1.2.
It does not support SSL 2.0.
The 2.10 version supports TLS 1.2 and some cipher suites added in the TLS 1.2
RFC.
It does not support ECC.
mod_gnutls uses the GnuTLS library to provide SSL 3.0, TLS 1.0 and TLS 1.1 (+ TLS 1.2 according to its web site, note tested) encryption for Apache HTTPD.
GnuTLS 2.8.6 was analyzed, source build(Ubuntu Server 9.1 x64 was used).
It supports SSL 3.0, TLS 1.0 and TLS 1.1.
It does not support SSL 2.0.
It does not support ECC.
Supports X.509(RSA, DSA) and OpenPGP certificates, SRP authentication(plain SRP, SRP-RSA and SRP-DSS) and PSK authentication(plain PSK and DHE-PSK).
SRP authentication cipher suites work over TLS 1.0 and TLS 1.1.
PSK authentication cipher suites work over TLS 1.0 and TLS 1.1.
To use OpenPGP certificates for a TLS session, the client adds to
its Client Hello message the needed certificate type extension in order to
inform the server it supports this - usually this extension is used with TLS
1.0 and TLS 1.1 but not with SSL 3.0.
! TLS_RSA_EXPORT_WITH_RC4_40_MD5(0x0003) is usable over TLS 1.1(fixed in the branch version).
You can list for example the supported cipher suites, etc.,
for your GnuTLS build with:
gnutls-cli -l
Table 1.1.1 lists the cipher suites supported by GnuTLS 2.8.6, as well as the GnuTLS cipher suite name(the way is listed with the gnutls-cli -l the command). If the GnuTLS Cipher Suite Name column is yellow, then the cipher suite is listed under the NORMAL category.
You can use with the gnutls-cli or gnutls-serv commands the --priority directive.
--priority
directive is a complex one used to specify the cipher suites and the SSL/TLS
versions allowed(and more, like compression, etc.). There are some common
keywords you can use to enable certain cipher suites, listed in Table 1.1.2. Note that the sorting
imposed by some keywords is somehow relative on the server side, what cipher
suite will be used also relates to the way the client lists the supported
cipher suites.
To the common keywords you can add or remove various values, listed in Table 1.1.3, which can add or disable
some cipher suites or SSL/TLS protocol versions.
Example 1: Remove 3DES based cipher suites from the NORMAL category:
--priority: NORMAL:-3DES-CBC
Example 2: Add Anonymous DH based cipher suites to
the NORMAL category:
--priority: NORMAL:+ANON-DH
Example 3: Remove SSL 3.0 from the SECURE category:
--priority: SECURE:-VERS-SSL3.0
Example 4: Enable only a specific cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA,
under TLS 1.0 and TLS 1.1 with no compression(assuming you use a RSA
certificate):
--priority: NONE:+VERS-TLS1.1:+VERS-TLS1.0:+AES-128-CBC:+DHE-RSA:+SHA1:+COMP-NULL
Example 5: Add compression(Deflate, zlib) to the NORMAL category:
--priority: NORMAL:+COMP-DEFLATE
Example 6: Enable only the cipher suites listed in
the below table(not necessarily in the order listed below) assuming you use a
RSA certificate:
--priority: NONE:+VERS-TLS1.1:+VERS-TLS1.0:+AES-128-CBC:+AES-256-CBC:+DHE-RSA:+RSA:+SHA1:+COMP-NULL
|
No. |
Cipher Suite |
Hex Value |
SSL/TLS Protocol Version |
|
1 |
TLS_RSA_WITH_AES_128_CBC_SHA |
0x002F |
TLS 1.0|TLS 1.1 |
|
2 |
TLS_DHE_RSA_WITH_AES_128_CBC_SHA |
0x0033 |
TLS
1.0|TLS 1.1 |
|
3 |
TLS_RSA_WITH_AES_256_CBC_SHA |
0x0035 |
TLS 1.0|TLS 1.1 |
|
4 |
TLS_DHE_RSA_WITH_AES_256_CBC_SHA |
0x0039 |
TLS
1.0|TLS 1.1 |
There is another way to use certain cipher suites or SSL/TLS versions with the help of the --ciphers and --protocols directives instead of the --priority ones, but is no longer recommended to do so, thus we will not discuss this.
Table 1.1.4 lists
the cipher suites supported by GnuTLS along with the common keywords categories
under the respective cipher suite can be found. For
OpenPGP there aren’t specific cipher suites(for example TLS_DHE_DSS_WITH_AES_128_CBC_SHA
works with an OpenPGP certificate, as long as the client adds to its Client
Hello message the needed certificate type extension - usually this extension is
used with TLS 1.0 and TLS 1.1 but not with SSL 3.0 -), to add this extension to the gnutls-cli Client Hello add the CTYPE-OPENPGP to the --priority directive on the client. Note that compression needs to be manually
added to a category as is not enabled by default.
Table 1.1.5 lists
the cipher suites supported by GnuTLS as well as a specific combination of
values to enable just the respective cipher suite(for all the supported SSL/TLS
versions, plus the supported compression methods). The Deflate compression is
red shaded as in order to use it zlib is needed, similar is true for the LZO
compression, lzo is needed in order to use it. For
OpenPGP there aren’t specific cipher suites(for example TLS_DHE_DSS_WITH_AES_128_CBC_SHA
works with an OpenPGP certificate, as long as the client adds to its Client
Hello message the needed certificate type extension - usually this extension is
used with TLS 1.0 and TLS 1.1 but not with SSL 3.0 -), just make sure that the OpenPGP server
certificate and private key are specified on the server(sometimes the CTYPE-OPENPGP might be
needed to add on the server to the --priority
directive).
Table 1.1.1 GnuTLS 2.8.6 Cipher Suites
|
No. |
Cipher Suite |
Hex
Value |
SSL/TLS Version |
GnuTLS
Cipher Suite Name |
|
1 |
TLS_RSA_WITH_NULL_MD5 |
0x0001 |
SSL
3.0|TLS 1.0|TLS 1.1 |
TLS_RSA_NULL_MD5 |
|
2 |
TLS_RSA_EXPORT_WITH_RC4_40_MD5 |
0x0003 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_RSA_EXPORT_ARCFOUR_40_MD5 |
|
3 |
TLS_RSA_WITH_RC4_128_MD5 |
0x0004 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_RSA_ARCFOUR_MD5 |
|
4 |
TLS_RSA_WITH_RC4_128_SHA |
0x0005 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_RSA_ARCFOUR_SHA1 |
|
5 |
TLS_RSA_WITH_3DES_EDE_CBC_SHA |
0x000A |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_RSA_3DES_EDE_CBC_SHA1 |
|
6 |
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA |
0x0013 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_DHE_DSS_3DES_EDE_CBC_SHA1 |
|
7 |
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA |
0x0016 |
SSL
3.0|TLS 1.0|TLS 1.1 |
TLS_DHE_RSA_3DES_EDE_CBC_SHA1 |
|
8 |
TLS_DH_anon_WITH_RC4_128_MD5 |
0x0018 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_ANON_DH_ARCFOUR_MD5 |
|
9 |
TLS_DH_anon_WITH_3DES_EDE_CBC_SHA |
0x001B |
SSL
3.0|TLS 1.0|TLS 1.1 |
TLS_ANON_DH_3DES_EDE_CBC_SHA1 |
|
10 |
TLS_RSA_WITH_AES_128_CBC_SHA |
0x002F |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_RSA_AES_128_CBC_SHA1 |
|
11 |
TLS_DHE_DSS_WITH_AES_128_CBC_SHA |
0x0032 |
SSL
3.0|TLS 1.0|TLS 1.1 |
TLS_DHE_DSS_AES_128_CBC_SHA1 |
|
12 |
TLS_DHE_RSA_WITH_AES_128_CBC_SHA |
0x0033 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_DHE_RSA_AES_128_CBC_SHA1 |
|
13 |
TLS_DH_anon_WITH_AES_128_CBC_SHA |
0x0034 |
SSL
3.0|TLS 1.0|TLS 1.1 |
TLS_ANON_DH_AES_128_CBC_SHA1 |
|
14 |
TLS_RSA_WITH_AES_256_CBC_SHA |
0x0035 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_RSA_AES_256_CBC_SHA1 |
|
15 |
TLS_DHE_DSS_WITH_AES_256_CBC_SHA |
0x0038 |
SSL
3.0|TLS 1.0|TLS 1.1 |
TLS_DHE_DSS_AES_256_CBC_SHA1 |
|
16 |
TLS_DHE_RSA_WITH_AES_256_CBC_SHA |
0x0039 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_DHE_RSA_AES_256_CBC_SHA1 |
|
17 |
TLS_DH_anon_WITH_AES_256_CBC_SHA |
0x003A |
SSL
3.0|TLS 1.0|TLS 1.1 |
TLS_ANON_DH_AES_256_CBC_SHA1 |
|
18 |
TLS_RSA_WITH_CAMELLIA_128_CBC_SHA |
0x0041 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_RSA_CAMELLIA_128_CBC_SHA1 |
|
19 |
TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA |
0x0044 |
SSL
3.0|TLS 1.0|TLS 1.1 |
TLS_DHE_DSS_CAMELLIA_128_CBC_SHA1 |
|
20 |
TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA |
0x0045 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_DHE_RSA_CAMELLIA_128_CBC_SHA1 |
|
21 |
TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA |
0x0046 |
SSL
3.0|TLS 1.0|TLS 1.1 |
TLS_ANON_DH_CAMELLIA_128_CBC_SHA1 |
|
22 |
TLS_DHE_DSS_WITH_RC4_128_SHA |
0x0066 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_DHE_DSS_ARCFOUR_SHA1 |
|
23 |
TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
|
0x0084 |
SSL
3.0|TLS 1.0|TLS 1.1 |
TLS_RSA_CAMELLIA_256_CBC_SHA1 |
|
24 |
TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA |
0x0087 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_DHE_DSS_CAMELLIA_256_CBC_SHA1 |
|
25 |
TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA |
0x0088 |
SSL 3.0|TLS
1.0|TLS 1.1 |
TLS_DHE_RSA_CAMELLIA_256_CBC_SHA1 |
|
26 |
TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA |
0x0089 |
SSL 3.0|TLS 1.0|TLS 1.1 |
TLS_ANON_DH_CAMELLIA_256_CBC_SHA1 |
|
27 |
TLS_PSK_WITH_RC4_128_SHA |
0x008A |
TLS 1.0|TLS 1.1 |
TLS_PSK_SHA_ARCFOUR_SHA1 |
|
28 |
TLS_PSK_WITH_3DES_EDE_CBC_SHA |
0x008B |
TLS 1.0|TLS 1.1 |
TLS_PSK_SHA_3DES_EDE_CBC_SHA1 |
|
29 |
TLS_PSK_WITH_AES_128_CBC_SHA
|
0x008C |
TLS 1.0|TLS 1.1 |
TLS_PSK_SHA_AES_128_CBC_SHA1 |
|
30 |
TLS_PSK_WITH_AES_256_CBC_SHA |
0x008D |
TLS 1.0|TLS 1.1 |
TLS_PSK_SHA_AES_256_CBC_SHA1 |
|
31 |
TLS_DHE_PSK_WITH_RC4_128_SHA
|
0x008E |
TLS 1.0|TLS 1.1 |
TLS_DHE_PSK_SHA_ARCFOUR_SHA1 |
|
32 |
TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA |
0x008F |
TLS 1.0|TLS 1.1 |
TLS_DHE_PSK_SHA_3DES_EDE_CBC_SHA1 |
|
33 |
TLS_DHE_PSK_WITH_AES_128_CBC_SHA |
0x0090 |
TLS 1.0|TLS 1.1 |
TLS_DHE_PSK_SHA_AES_128_CBC_SHA1 |
|
34 |
TLS_DHE_PSK_WITH_AES_256_CBC_SHA |
0x0091 |
TLS 1.0|TLS 1.1 |
TLS_DHE_PSK_SHA_AES_256_CBC_SHA1 |
|
35 |
TLS_SRP_SHA_WITH_3DES_EDE_CBC_SHA |
0xC01A |
TLS
1.0|TLS 1.1 |
TLS_SRP_SHA_3DES_EDE_CBC_SHA1 |
|
36 |
TLS_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA |
0xC01B |
TLS 1.0|TLS 1.1 |
TLS_SRP_SHA_RSA_3DES_EDE_CBC_SHA1 |
|
37 |
TLS_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA |
0xC01C |
TLS
1.0|TLS 1.1 |
TLS_SRP_SHA_DSS_3DES_EDE_CBC_SHA1 |
|
38 |
TLS_SRP_SHA_WITH_AES_128_CBC_SHA |
0xC01D |
TLS 1.0|TLS 1.1 |
TLS_SRP_SHA_AES_128_CBC_SHA1 |
|
39 |
TLS_SRP_SHA_RSA_WITH_AES_128_CBC_SHA |
0xC01E |
TLS
1.0|TLS 1.1 |
TLS_SRP_SHA_RSA_AES_128_CBC_SHA1 |
|
40 |
TLS_SRP_SHA_DSS_WITH_AES_128_CBC_SHA |
0xC01F |
TLS 1.0|TLS 1.1 |
TLS_SRP_SHA_DSS_AES_128_CBC_SHA1 |
|
41 |
TLS_SRP_SHA_WITH_AES_256_CBC_SHA |
0xC020 |
TLS
1.0|TLS 1.1 |
TLS_SRP_SHA_AES_256_CBC_SHA1 |
|
42 |
TLS_SRP_SHA_RSA_WITH_AES_256_CBC_SHA |
0xC021 |
TLS 1.0|TLS 1.1 |
TLS_SRP_SHA_RSA_AES_256_CBC_SHA1 |
|
43 |
TLS_SRP_SHA_DSS_WITH_AES_256_CBC_SHA |
0xC022 |
TLS
1.0|TLS 1.1 |
TLS_SRP_SHA_DSS_AES_256_CBC_SHA1 |
Table 1.1.2 common GnuTLS 2.8.6 priority common keywords
|
No. |
Keyword |
Quick Info |
|
1 |
EXPORT |
All the supported cipher suites including the export one, excepting the anonymous DH and NULL encryption ones |
|
2 |
NORMAL |
All the supported cipher suites excepting the export, NULL encryption and the anonymous DH ones |
|
3 |
PERFORMANCE |
All the supported cipher suites excepting the export, NULL encryption and the anonymous DH ones sorted in terms of performance |
|
4 |
SECURE |
All the supported cipher suites excepting the export, NULL encryption and the anonymous DH ones sorted in terms of strength |
|
5 |
SECURE128 |
All the supported cipher suites excepting the export, NULL encryption and the anonymous DH ones up to 128-bit key length |
|
6 |
SECURE256 |
All the supported cipher suites excepting the export, NULL encryption and the anonymous DH ones sorted in terms of strength |
|
7 |
NONE |
Nothing is enabled(this also disables protocols and compression methods) |
Table 1.1.3 GnuTLS 2.8.6 priority values that can be added or removed to the common keywords
|
No. |
Keyword |
Quick Info |
|
1 |
3DES-CBC |
3DES cipher |
|
2 |
AES-128-CBC |
AES 128-bit cipher |
|
3 |
AES-256-CBC |
AES 256-bit cipher |
|
4 |
ARCFOUR-40 |
RC4 export 40-bit cipher |
|
5 |
ARCFOUR-128 |
RC4 128-bit |
|
6 |
CAMELLIA-128-CBC |
Camellia 128-bit cipher |
|
7 |
CAMELLIA-256-CBC |
Camellia 256-bit cipher |
|
8 |
ANON-DH |
Anonymous DH |
|
9 |
DHE-DSS |
DSS authenticated DHE key exchange |
|
10 |
DHE-RSA |
RSA authenticated DHE key exchange |
|
11 |
RSA |
RSA authentication and key exchange |
|
12 |
RSA-EXPORT |
RSA-EXPORT authentication and key exchange |
|
13 |
SRP |
SRP authentication |
|
14 |
SRP-DSS |
SRP-DSS authentication |
|
15 |
SRP-RSA |
SRP-RSA authentication |
|
16 |
MD5 |
MD5 MAC |
|
17 |
SHA1 |
SHA1 MAC |
|
18 |
COMP-DEFLATE |
Deflate compression |
|
19 |
COMP-NULL |
NULL compression |
|
20 |
COMP-LZO |
LZO compression(experimental) |
|
21 |
VERS-SSL3.0 |
SSL 3.0 |
|
22 |
VERS-TLS1.0 |
TLS 1.0 |
|
23 |
VERS-TLS1.1 |
TLS 1.1 |
|
24 |
%COMPAT |
Disable MAC padding to assure compatibility with some broken clients |
|
25 |
%SSL3_RECORD_VERSION |
use SSL3.0 record version in Client Hello |
|
26 |
CTYPE-OPENPGP |
Certificate type OpenPGP(can be used to add the OpenPGP certificate type extension to a Client Hello) |
|
27 |
CTYPE-X.509 |
Certificate type X.509 |
Table 1.1.4 GnuTLS
2.8.6 cipher suites(and the priority categories under the respective cipher
suite can be found)
|
No. |
Cipher Suite |
Hex
Value |
SSL/TLS Version |
GnuTLS
priority |
|
1 |
TLS_RSA_WITH_NULL_MD5 |
0x0001 |
SSL
3.0|TLS 1.0|TLS 1.1 |
? |
|
2 |
TLS_RSA_EXPORT_WITH_RC4_40_MD5 |
0x0003 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT |
|
3 |
TLS_RSA_WITH_RC4_128_MD5 |
0x0004 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
4 |
TLS_RSA_WITH_RC4_128_SHA |
0x0005 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
5 |
TLS_RSA_WITH_3DES_EDE_CBC_SHA |
0x000A |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
6 |
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA |
0x0013 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
7 |
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA |
0x0016 |
SSL
3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
8 |
TLS_DH_anon_WITH_RC4_128_MD5 |
0x0018 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT:+ANON-DH|NORMAL:+ANON-DH|PERFORMANCE:+ANON-DH|SECURE:+ANON-DH|SECURE128:+ANON-DH |
|
9 |
TLS_DH_anon_WITH_3DES_EDE_CBC_SHA |
0x001B |
SSL
3.0|TLS 1.0|TLS 1.1 |
EXPORT:+ANON-DH|NORMAL:+ANON-DH|PERFORMANCE:+ANON-DH|SECURE:+ANON-DH|SECURE128:+ANON-DH |
|
10 |
TLS_RSA_WITH_AES_128_CBC_SHA |
0x002F |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
11 |
TLS_DHE_DSS_WITH_AES_128_CBC_SHA |
0x0032 |
SSL
3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
12 |
TLS_DHE_RSA_WITH_AES_128_CBC_SHA |
0x0033 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
13 |
TLS_DH_anon_WITH_AES_128_CBC_SHA |
0x0034 |
SSL
3.0|TLS 1.0|TLS 1.1 |
EXPORT:+ANON-DH|NORMAL:+ANON-DH|PERFORMANCE:+ANON-DH|SECURE:+ANON-DH|SECURE128:+ANON-DH |
|
14 |
TLS_RSA_WITH_AES_256_CBC_SHA |
0x0035 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE256 |
|
15 |
TLS_DHE_DSS_WITH_AES_256_CBC_SHA |
0x0038 |
SSL
3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE256 |
|
16 |
TLS_DHE_RSA_WITH_AES_256_CBC_SHA |
0x0039 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE256 |
|
17 |
TLS_DH_anon_WITH_AES_256_CBC_SHA |
0x003A |
SSL
3.0|TLS 1.0|TLS 1.1 |
EXPORT:+ANON-DH|NORMAL:+ANON-DH|PERFORMANCE:+ANON-DH|SECURE:+ANON-DH|SECURE256:+ANON-DH |
|
18 |
TLS_RSA_WITH_CAMELLIA_128_CBC_SHA |
0x0041 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
19 |
TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA |
0x0044 |
SSL
3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
20 |
TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA |
0x0045 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
21 |
TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA |
0x0046 |
SSL
3.0|TLS 1.0|TLS 1.1 |
EXPORT:+ANON-DH|NORMAL:+ANON-DH|PERFORMANCE:+ANON-DH|SECURE:+ANON-DH|SECURE128:+ANON-DH |
|
22 |
TLS_DHE_DSS_WITH_RC4_128_SHA |
0x0066 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
23 |
TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
|
0x0084 |
SSL
3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE256 |
|
24 |
TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA |
0x0087 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE256 |
|
25 |
TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA |
0x0088 |
SSL
3.0|TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE256 |
|
26 |
TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA |
0x0089 |
SSL 3.0|TLS 1.0|TLS 1.1 |
EXPORT:+ANON-DH|NORMAL:+ANON-DH|PERFORMANCE:+ANON-DH|SECURE:+ANON-DH|SECURE256:+ANON-DH |
|
27 |
TLS_PSK_WITH_RC4_128_SHA |
0x008A |
TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
28 |
TLS_PSK_WITH_3DES_EDE_CBC_SHA |
0x008B |
TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
29 |
TLS_PSK_WITH_AES_128_CBC_SHA
|
0x008C |
TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
30 |
TLS_PSK_WITH_AES_256_CBC_SHA |
0x008D |
TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE256 |
|
31 |
TLS_DHE_PSK_WITH_RC4_128_SHA
|
0x008E |
TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
32 |
TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA |
0x008F |
TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
33 |
TLS_DHE_PSK_WITH_AES_128_CBC_SHA |
0x0090 |
TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
34 |
TLS_DHE_PSK_WITH_AES_256_CBC_SHA |
0x0091 |
TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE256 |
|
35 |
TLS_SRP_SHA_WITH_3DES_EDE_CBC_SHA |
0xC01A |
TLS
1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
36 |
TLS_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA |
0xC01B |
TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
37 |
TLS_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA |
0xC01C |
TLS
1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
38 |
TLS_SRP_SHA_WITH_AES_128_CBC_SHA |
0xC01D |
TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
39 |
TLS_SRP_SHA_RSA_WITH_AES_128_CBC_SHA |
0xC01E |
TLS
1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
40 |
TLS_SRP_SHA_DSS_WITH_AES_128_CBC_SHA |
0xC01F |
TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE128 |
|
41 |
TLS_SRP_SHA_WITH_AES_256_CBC_SHA |
0xC020 |
TLS
1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE256 |
|
42 |
TLS_SRP_SHA_RSA_WITH_AES_256_CBC_SHA |
0xC021 |
TLS 1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE256 |
|
43 |
TLS_SRP_SHA_DSS_WITH_AES_256_CBC_SHA |
0xC022 |
TLS
1.0|TLS 1.1 |
EXPORT|NORMAL|PERFORMANCE|SECURE|SECURE256 |
Table 1.1.5 GnuTLS
2.8.6 cipher suites(and a combination of values to enable the respective cipher
suite under priority)
|
No. |
Cipher Suite |
Hex
Value |
SSL/TLS Version |
GnuTLS
priority |
|
1 |
TLS_RSA_WITH_NULL_MD5 |
0x0001 |
SSL
3.0|TLS 1.0|TLS 1.1 |
? |
|
2 |
TLS_RSA_EXPORT_WITH_RC4_40_MD5 |
0x0003 |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+ARCFOUR-40:+RSA-EXPORT:+MD5:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
3 |
TLS_RSA_WITH_RC4_128_MD5 |
0x0004 |
SSL
3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+ARCFOUR-128:+MD5:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
4 |
TLS_RSA_WITH_RC4_128_SHA |
0x0005 |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+ARCFOUR-128:+RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
5 |
TLS_RSA_WITH_3DES_EDE_CBC_SHA |
0x000A |
SSL
3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+3DES-CBC:+RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
6 |
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA |
0x0013 |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+3DES-CBC:+DHE-DSS:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
7 |
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA |
0x0016 |
SSL
3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+3DES-CBC:+DHE-RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
8 |
TLS_DH_anon_WITH_RC4_128_MD5 |
0x0018 |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+ARCFOUR-128:+ANON-DH:+MD5:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
9 |
TLS_DH_anon_WITH_3DES_EDE_CBC_SHA |
0x001B |
SSL
3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+3DES-CBC:+ANON-DH:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
10 |
TLS_RSA_WITH_AES_128_CBC_SHA |
0x002F |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+AES-128-CBC:+RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
11 |
TLS_DHE_DSS_WITH_AES_128_CBC_SHA |
0x0032 |
SSL
3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+AES-128-CBC:+DHE-DSS:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
12 |
TLS_DHE_RSA_WITH_AES_128_CBC_SHA |
0x0033 |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+AES-128-CBC:+DHE-RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
13 |
TLS_DH_anon_WITH_AES_128_CBC_SHA |
0x0034 |
SSL
3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+AES-128-CBC:+ANON-DH:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
14 |
TLS_RSA_WITH_AES_256_CBC_SHA |
0x0035 |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+AES-256-CBC:+RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
15 |
TLS_DHE_DSS_WITH_AES_256_CBC_SHA |
0x0038 |
SSL
3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+AES-256-CBC:+DHE-DSS:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
16 |
TLS_DHE_RSA_WITH_AES_256_CBC_SHA |
0x0039 |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+AES-128-CBC:+DHE-RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
17 |
TLS_DH_anon_WITH_AES_256_CBC_SHA |
0x003A |
SSL
3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+AES-256-CBC:+ANON-DH:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
18 |
TLS_RSA_WITH_CAMELLIA_128_CBC_SHA |
0x0041 |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+CAMELLIA-128-CBC:+RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
19 |
TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA |
0x0044 |
SSL
3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+CAMELLIA-128-CBC:+DHE-DSS:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
20 |
TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA |
0x0045 |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+CAMELLIA-128-CBC:+DHE-RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
21 |
TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA |
0x0046 |
SSL
3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+CAMELLIA-128-CBC:+ANON-DH:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
22 |
TLS_DHE_DSS_WITH_RC4_128_SHA |
0x0066 |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+ARCFOUR-128:+DHE-DSS:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
23 |
TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
|
0x0084 |
SSL
3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+CAMELLIA-256-CBC:+RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
24 |
TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA |
0x0087 |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+CAMELLIA-256-CBC:+DHE-DSS:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
25 |
TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA |
0x0088 |
SSL
3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+CAMELLIA-256-CBC:+DHE-RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
26 |
TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA |
0x0089 |
SSL 3.0|TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+VERS-SSL3.0:+CAMELLIA-256-CBC:+ANON-DH:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
27 |
TLS_PSK_WITH_RC4_128_SHA |
0x008A |
TLS
1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+ARCFOUR-128:+PSK:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
28 |
TLS_PSK_WITH_3DES_EDE_CBC_SHA |
0x008B |
TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+3DES-CBC:+PSK:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
29 |
TLS_PSK_WITH_AES_128_CBC_SHA
|
0x008C |
TLS
1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+AES-128-CBC:+PSK:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
30 |
TLS_PSK_WITH_AES_256_CBC_SHA |
0x008D |
TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+AES-256-CBC:+PSK:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
31 |
TLS_DHE_PSK_WITH_RC4_128_SHA
|
0x008E |
TLS
1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+ARCFOUR-128:+DHE-PSK:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
32 |
TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA |
0x008F |
TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+3DES-CBC:+DHE-PSK:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
33 |
TLS_DHE_PSK_WITH_AES_128_CBC_SHA |
0x0090 |
TLS
1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+AES-128-CBC:+DHE-PSK:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
34 |
TLS_DHE_PSK_WITH_AES_256_CBC_SHA |
0x0091 |
TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+AES-256-CBC:+DHE-PSK:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
35 |
TLS_SRP_SHA_WITH_3DES_EDE_CBC_SHA |
0xC01A |
TLS
1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+3DES-CBC:+SRP:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
36 |
TLS_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA |
0xC01B |
TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+3DES-CBC:+SRP-RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
37 |
TLS_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA |
0xC01C |
TLS
1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+3DES-CBC:+SRP-DSS:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
38 |
TLS_SRP_SHA_WITH_AES_128_CBC_SHA |
0xC01D |
TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+AES-128-CBC:+SRP:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
39 |
TLS_SRP_SHA_RSA_WITH_AES_128_CBC_SHA |
0xC01E |
TLS
1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+AES-128-CBC:+SRP-RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
40 |
TLS_SRP_SHA_DSS_WITH_AES_128_CBC_SHA |
0xC01F |
TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+AES-128-CBC:+SRP-DSS:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
41 |
TLS_SRP_SHA_WITH_AES_256_CBC_SHA |
0xC020 |
TLS
1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+AES-256-CBC:+SRP:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
42 |
TLS_SRP_SHA_RSA_WITH_AES_256_CBC_SHA |
0xC021 |
TLS 1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+AES-256-CBC:+SRP-RSA:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
|
43 |
TLS_SRP_SHA_DSS_WITH_AES_256_CBC_SHA |
0xC022 |
TLS
1.0|TLS 1.1 |
NONE:+VERS-TLS1.1:+VERS-TLS1.0:+AES-256-CBC:+SRP-DSS:+SHA1:+COMP-NULL:+COMP-DEFLATE:+COMP-LZO |
According to its web site mod_gnutls uses the GnuTLS library to provide SSL 3.0, TLS 1.0 and TLS 1.1 encryption for Apache HTTPD.
mod_gnutls 0.5.5 was analyzed with GnuTLS 2.8.6 and Apache 2.2.15, all source builds(Ubuntu Server 9.1 x64 was used).
It does not support SSL 2.0, as SSL 2.0 is not supported by GnuTLS.
It can use a RSA or DSA certificate(X.509).
Additionally OpenPGP certificates and SRP authentication(plain SRP, SRP-RSA,
SRP-DSS) are supported.
SRP authentication cipher suites work over TLS 1.0 and TLS 1.1.