Configure Cryptography Mode in GigaVUE‑FM
GigaVUE‑FM can be configured to cryptography mode to improve the security of the management interface. In cryptography mode, weak encryption or decryption and hashing algorithms used for accessing data and generating keys are disabled. The cryptography mode limits the cryptographic algorithms that are available for use on a GigaVUE‑FM.
Enable Cryptography Mode
To enable cryptography mode in the GigaVUE‑FM, do the following:
- Go to
> Settings > System > Preferences. - In the Security Settings, enable the option Crypto Mode using the toggle button.
TLS or SSL Ciphers to Use with Cryptography Mode
When enhanced cryptography mode is enabled, GigaVUE-FM supports only TLS 1.2. The following ciphers are supported in TLS 1.2:
|
Ciphers supported in TLS 1.2 |
||
|
ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES128-SHA256 |
SSH Cryptographic Algorithms
GigaVUE-FM supports the following SSH algorithms:
|
SSH Host Key Algorithm |
SSH Key Exchange |
Encryption Algorithms |
Hash-based Message Authentication Code |
|
ECDSA |
ecdsa-sha2-nistp384
|
aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com |
HMAC-SHA2-256, HMAC-SHA2-512 |
