Opened 10 years ago
#615 new enhancement
Ability to specify different SSL certificate based on negotiated cipher suites and tls versions
Reported by: | Ryan Hurst | Owned by: | |
---|---|---|---|
Priority: | minor | Milestone: | |
Component: | nginx-core | Version: | |
Keywords: | SSL | Cc: | |
uname -a: | |||
nginx -V: | 1.x |
Description
As TLS evolves, algorithms get deprecated and added the ability to selectively use certificates containing different types of keys based on which suite and TLS version are negotiated is useful.
Apache supports this, google also does this in their custom server so that they can intelligently use the best and most appropriate key material.
Note:
See TracTickets
for help on using tickets.