Recommended Cipher Suite

IANA name:

TLS_DHE_PSK_WITH_AES_128_GCM_SHA256

OpenSSL name:

DHE-PSK-AES128-GCM-SHA256

GnuTLS name:

TLS_DHE_PSK_AES_128_GCM_SHA256

Hex code:

0x00, 0xAA

TLS Version(s):

TLS1.2

---

Protocol:

Transport Layer Security (TLS)

Key Exchange:

Diffie-Hellman Ephemeral (DHE)

Authentication:

Pre-Shared Key (PSK)

Encryption:

AEAD Advanced Encryption Standard with 128bit key in Galois/Counter mode (AES 128 GCM)

Hash:

Secure Hash Algorithm 256 (SHA256)

---

Included in RFC:

• RFC 5487

Machine-readable:

application/json