"The Codenomicon tools are amazing. Using them is like being attacked by the most relentless adversary who uses every possible method to find flaws in your code

We fixed subtle crash bugs in Samba that had been in the code for over ten years. We would never have found those bugs without the Codenomicon tools.

If you're serious about implementing protocols correctly, you need the Codenomicon tools."

-- Jeremy Allison,
Co Creator of Samba

Products by Protocol

TLS Server Data Sheet

Test Suite: TLS Server
Direction: Server

TLS (Transport Layer Security) and its predecessor, SSL3 (Secure Sockets Layer), represents the current standard for communications privacy in the Internet. TLS is used in server and client applications ranging from web browsers to electronic banking software and e-commerce sites. As higher-level protocols often build upon it, the dependability of the underlying TLS implementation is an integral factor in the secure operation of a wide range of software products. The robustness and security of TLS/SSL software must be verified using the TLS Server Test Suite.

Used specifications

Specification	Title
RFC2246	The TLS Protocol Version 1.0
RFC3268	Advanced Encryption Standard (AES) Ciphersuites for Transport Layer Security (TLS)
RFC3546	Transport Layer Security (TLS) Extensions
RFC4346	The Transport Layer Security (TLS) Protocol Version 1.1
RFC4366	Transport Layer Security (TLS) Extensions
RFC5054	Using the Secure Remote Password (SRP) Protocol for TLS Authentication
RFC5746	Transport Layer Security (TLS) Renegotiation Indication Extension
draft-freier-ssl-version3-02	The SSL Protocol Version 3.0

Test tool general features

Fully automated black-box negative testing
Ready-made test cases
Written in Java(tm)
GUI, command line, remote interface modes
Instrumentation (health-check) capability
Support and maintenance
Comprehensive user documentation
Results reporting and analysis

Tool-specific information

Tested messages	Specifications	Notes
Client Hello	RFC2246, RFC4346
Client Certificate	RFC2246, RFC4346
Client Key Exchange Message	RFC2246, RFC4346
Certificate Verify	RFC2246, RFC4346
Finished	RFC2246, RFC4346
Change Cipher Spec	RFC2246, RFC4346
Supported protocol features	Specifications	Notes
Transport over TCP	RFC4346
TLS default handshake with HTTP, FTP or POP3 payload	RFC4346
Client initiated rehandshake	RFC4346, RFC5746
Client initiated abbreviated handshake	RFC4346, RFC5746
Server initiated rehandshake with Hello Request message	RFC4346, RFC5746
Supported test suite features	Notes
TLS Application Data over TCP or UDP socket
X.509 RSA/DSA Certificates and Private Keys from file, TCP or UDP socket
Supported TLS/SSL cipher suites	Specifications	Notes
TLS_RSA_WITH_RC4_128_MD5	RFC4346
TLS_RSA_WITH_RC4_128_SHA	RFC4346
TLS_RSA_WITH_DES_CBC_SHA	RFC4346
TLS_RSA_WITH_3DES_EDE_CBC_SHA	RFC4346
TLS_DHE_DSS_WITH_DES_CBC_SHA	RFC4346
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA	RFC4346
TLS_DHE_RSA_WITH_DES_CBC_SHA	RFC4346
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA	RFC4346
TLS_DH_anon_WITH_RC4_128_MD5	RFC4346
TLS_DH_anon_WITH_DES_CBC_SHA	RFC4346
TLS_DH_anon_WITH_3DES_EDE_CBC_SHA	RFC4346
TLS_RSA_WITH_AES_128_CBC_SHA	RFC3268
TLS_DHE_DSS_WITH_AES_128_CBC_SHA	RFC3268
TLS_DHE_RSA_WITH_AES_128_CBC_SHA	RFC3268
TLS_DH_anon_WITH_AES_128_CBC_SHA	RFC3268
TLS_RSA_WITH_AES_256_CBC_SHA	RFC3268
TLS_DHE_DSS_WITH_AES_256_CBC_SHA	RFC3268
TLS_DHE_RSA_WITH_AES_256_CBC_SHA	RFC3268
TLS_DH_anon_WITH_AES_256_CBC_SHA	RFC3268
TLS_RSA_EXPORT_WITH_RC4_40_MD5	RFC4346
TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5	RFC4346
TLS_RSA_EXPORT_WITH_DES40_CBC_SHA	RFC4346
TLS_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA	RFC4346
TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA	RFC4346
TLS_DH_anon_EXPORT_WITH_RC4_40_MD5	RFC4346
TLS_DH_anon_EXPORT_WITH_DES40_CBC_SHA	RFC4346
TLS_RSA_WITH_NULL_MD5	RFC4346
TLS_RSA_WITH_NULL_SHA	RFC4346
TLS_NULL_WITH_NULL_NULL	RFC4346

Select Protocol:

List of available test suites. Please note that the information in these sheets is subject to periodical change.

Test Tool Datasheet:

Contact Us:

Contact us for more information