Opened 7 years ago

#615 new enhancement

Ability to specify different SSL certificate based on negotiated cipher suites and tls versions

Reported by: Ryan Hurst Owned by:
Priority: minor Milestone:
Component: nginx-core Version:
Keywords: SSL Cc:
uname -a:
nginx -V: 1.x


As TLS evolves, algorithms get deprecated and added the ability to selectively use certificates containing different types of keys based on which suite and TLS version are negotiated is useful.

Apache supports this, google also does this in their custom server so that they can intelligently use the best and most appropriate key material.

Change History (0)

Note: See TracTickets for help on using tickets.