Which Ciphers and Algorithms supported by SFTP Connection

Home Page Forums FAQs – SSIS PowerPack Which Ciphers and Algorithms supported by SFTP Connection

Tagged: 

This topic contains 0 replies, has 1 voice, and was last updated by  ZappySys 4 years, 4 months ago.

Viewing 1 post (of 1 total)
  • Author
    Posts
  • #2386

    ZappySys
    Keymaster

    Here is full list of various ciphers / algorithms used by our SFTP Task and SFTP Connection Manager for Secure FTP.

    Basically there are 4 main categories of SFTP Protocol where can tweak ciphers/algorithms used during negotiation phase.

    • Key Exchange Algorithms
    • Mac Ciphers
    • Encryption Ciphers
    • Host Key Algorithms

    Key Exchange Algorithms

    [su_table]

    Cipher ID Key length Description
    diffie-hellman-group-exchange-sha256 Negotiated Diffie Hellman with group exchange and SHA-256 hash
    diffie-hellman-group16-sha512 4096 bits Diffie Hellman with Oakley Group 16 and SHA-512 hash
    diffie-hellman-group15-sha512 3072 bits Diffie Hellman with Oakley Group 15 and SHA-512 hash
    diffie-hellman-group14-sha256 2048 bits Diffie Hellman with Oakley Group 14 and SHA-256 hash
    diffie-hellman-group-exchange-sha1 Negotiated Diffie Hellman with group exchange and SHA-1 hash
    diffie-hellman-group14-sha1 2048 bits Diffie Hellman with Oakley Group 14 and SHA-1 hash
    diffie-hellman-group1-sha1 1024 bits Diffie Hellman with Oakley Group 2 and SHA-1 hash
    ecdh-sha2-nistp256 256 bits Elliptic Curve Diffie Hellman with NIST P-256 curve and SHA-256 hash
    ecdh-sha2-nistp384 384 bits Elliptic Curve Diffie Hellman with NIST P-384 curve and SHA-384 hash
    ecdh-sha2-nistp521 521 bits Elliptic Curve Diffie Hellman with NIST P-521 curve and SHA-512 hash
    curve25519-sha256@libssh.org 256 bits Elliptic Curve Diffie-Hellman on Curve25519 with SHA-256 hash

    [/su_table]

    Mac Ciphers

    [su_table]

    Cipher ID Description Note
    hmac-sha2-256 SHA-256
    hmac-sha2-512 SHA-512
    hmac-sha1 SHA-1
    hmac-md5 MD5 Disabled by default.
    hmac-sha1-96 SHA-1 (trimmed to 96 bits) Disabled by default.
    hmac-md5-96 MD5 (trimmed to 96 bits) Disabled by default.

    [/su_table]

    Encryption Ciphers

    [su_table]

    Cipher ID Description Note
    aes256-ctr AES in CTR mode with 256-bit key
    aes192-ctr AES in CTR mode with 192-bit key
    aes128-ctr AES in CTR mode with 128-bit key
    aes256-cbc AES in CBC mode with 256-bit key
    aes192-cbc AES in CBC mode with 192-bit key
    aes128-cbc AES in CBC mode with 128-bit key
    3des-ctr TripleDES in CTR mode
    3des-cbc TripleDES in CBC mode
    twofish256-ctr Twofish in CTR mode with 256-bit key
    twofish192-ctr Twofish in CTR mode with 192-bit key
    twofish128-ctr Twofish in CTR mode with 128-bit key
    twofish256-cbc Twofish in CBC mode with 256-bit key
    twofish192-cbc Twofish in CBC mode with 192-bit key
    twofish128-cbc Twofish in CBC mode with 128-bit key
    twofish-cbc Twofish in CBC mode with 256-bit key Disabled by default.
    blowfish-ctr Twofish in CTR mode with 256-bit key Disabled by default.
    blowfish-cbc Blowfish in CBC mode with 128-bit key Disabled by default.
    arcfour256 ArcFour (RC4) stream cipher (with discard step) with 256-bit key Disabled by default.
    arcfour128 ArcFour (RC4) stream cipher (with discard step) with 128-bit key Disabled by default.
    arcfour ArcFour (RC4) stream cipher with 128-bit key Disabled by default.

    [/su_table]

    Host Key Algorithms

    [su_table]

    Cipher ID Description
    ssh-dss NIST Digital Signature Algorithm (DSA) with SHA-1 hash
    ssh-rsa RSA with SHA-1 hash
    ssh-rsa-sha256@ssh.com RSA with SHA-256 hash
    rsa-sha2-256 RSA with SHA-256 hash
    rsa-sha2-512 RSA with SHA-512 hash
    x509v3-sign-rsa-sha256@ssh.com X509 certificate with RSA and SHA-256 hash
    x509v3-sign-rsa X509 certificate with RSA and SHA-1 hash
    x509v3-sign-dss X509 certificate with DSA and SHA-1 hash
    ecdsa-sha2-nistp256 Elliptic Curve Digital Signature Algorithm (ECDSA) on NIST P-256 curve with SHA-256 hash
    ecdsa-sha2-nistp384 Elliptic Curve Digital Signature Algorithm (ECDSA) on NIST P-384 curve with SHA-384 hash
    ecdsa-sha2-nistp521 Elliptic Curve Digital Signature Algorithm (ECDSA) on NIST P-521 curve with SHA-512 hash
    ssh-ed25519 Ed25519, an Edwards-curve Digital Signature Algorithm (EdDSA)

    [/su_table]

Viewing 1 post (of 1 total)

The forum ‘FAQs – SSIS PowerPack’ is closed to new topics and replies.