Feature #1080: Introduce new --list-profiles option to TLS-enabled network tools - DCMTK - OFFIS DCMTK and DICOM Projects

Actions

Copy link

Feature #1080

closed

Introduce new --list-profiles option to TLS-enabled network tools

Added by Jörg Riesmeier about 2 years ago. Updated 9 months ago.

Status:

Closed

Priority:

Normal

Assignee:

Marco Eichelberg

Category:

Library and Apps

Target version:

3.7.1+

Start date:

2023-06-22

Due date:

% Done:

100%

Estimated time:

2:00 h

Module:

dcmtls, dcmnet

Operating System:

Compiler:

Description

A new command line option --list-profiles could be introduced that lists all implemented Secure Transport Connection Profiles and indicates for each of them whether they are actually supported (e.g. by the underlying OpenSSL library) or not. This way, it would be easier than now to check to which security profiles a tool is compliant.

That means, something like the following:

Cryptographic algorithms implemented by: OpenSSL 3.0.2

Supported Secure Transport Connection Profiles:
  BCP 195 TLS Secure Transport Connection Profile (retired)
  Non-Downgrading BCP 195 TLS Secure Transport Connection Profile (retired)
  Extended BCP 195 TLS Profile Secure Transport Connection Profile (retired)
  BCP 195 RFC 8996 TLS Secure Transport Connection Profile

Not supported Secure Transport Connection Profiles:
  Basic TLS Secure Transport Connection Profile (retired) = not supported by OpenSSL 3.0.2
  ISCL Secure Transport Connection Profile (retired) = not implemented
  Modified BCP 195 RFC 8996 TLS Secure Transport Connection Profile = not supported by OpenSSL 3.0.2

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

DCMTK

Feature #1080

Introduce new --list-profiles option to TLS-enabled network tools

Updated by Marco Eichelberg 9 months ago