Bug ID 579953: Updated the list of Common Criteria ciphersuites

Last Modified: Oct 01, 2018

Bug Tracker

Affected Product:  See more info
BIG-IP All(all modules)

Known Affected Versions:
12.0.0, 12.0.0 HF1, 12.0.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.0, 12.1.0 HF1, 12.1.0 HF2

Fixed In:
12.1.1

Opened: Mar 11, 2016
Severity: 2-Critical

Symptoms

This is a continuous maintenance of the default set per certification requirements

Impact

Current set of ciphersuites is the following, subject to change in future releases: AES{128,256}-{SHA,SHA256} ECDHE-RSA-AES128-CBC-{SHA,SHA256} ECDHE-RSA-AES256-CBC-{SHA,SHA384} ECDHE-RSA-AES128-GCM-{SHA256,SHA384} ECDHE-ECDSA-AES128-{SHA,SHA256} ECDHE-ECDSA-AES256-{SHA,SHA384 } ECDHE-ECDSA-AES128-GCM-{SHA256,SHA384}

Conditions

These changes are only in effect when ccmode script is executed.

Workaround

None

Fix Information

None

Behavior Change