Ssl configuration – Zilog EZ80F91AZA User Manual
Page 25
UM020107-1211
SSL Configuration
ZTP Network Security SSL Plug-In
User Manual
19
SSL Configuration
Before customizing the SSL demo project or adding SSL support to your existing ZTP
application, see Table 2. Additional information is available in the
File column identi-
fies the source file that contains the default setting for the indicated parameter.
The SSL demo project supplied with the ZTP Network Security SSL Plug-In already
includes the default values for all of the configuration options. You can examine the SSL
demo project to get a better understanding of how these configurable options can be cus-
tomized.
Table 2. SSL Configuration Reference
Configurable
Parameter
Options
Default
Configuration
File
Description
ZDS II project
settings
ZDS II project configuration
*.zdsproj
Must specify Real-Time Kernel used,
add SSL header files to Include Paths,
and link SSL libraries.
SSL
initialization
None
main.c
Mandatory
SSL
handshake
protocol
initialization
• SSL2_ClientInit
• SSL2_ServerInit
• SSL3_ClientInit
• SSL3_ServerInit
• TLS1_ClientInit
• TLS1_ServerInit
main.c
At least one handshake protocol must
be initialized.
Digest
algorithm
selection
• MD5
• SHA1
• HMAC_MD5
• HMAC_SHA1
hash_conf.c
MD5 must be included for all versions of
SSL. SSLv3 also requires SHA1. TLSv1
requires all digest algorithms.
Cipher
algorithm
selection
• RC4
• DES
• 3DES
• AES
cipher_conf.c
PKI algorithm
selection
• RSA
• DSA
• DH
pki_conf.c
PKI algorithm should match server’s
certificate.
Cipher suite
configuration
ssl_conf.c
Valid combinations of digest, cipher,
and PKI algorithms used to secure
application level data.