Do we support Perfect Forward Secrecy (PFS) on SSL VPN Connection?

Description

This article describes the Perfect Forward Secrecy (PFS) support for SSLVPN.

In cryptography, perfect forward secrecy (PFS), is a property of secure communication protocols in which compromise of long-term keys does not compromise past session keys. Forward secrecy protects past sessions against future compromises of secret keys or passwords.

Resolution

SSLVPN does not use any DH (Diffie-Hellman) or ECDHE (Elliptic-Curve Variant) system hence the Perfect Forward Secrecy (PFS) is not an available option for UTM SSLVPN.

Related Articles

  • Ports, FQDNs and IP Addresses Used by SonicWall Products
    Read More
  • Best practices for administrator managing SonicWall Firewall Appliances
    Read More
  • Simple debug steps when VPN tunnel does not go active
    Read More

Categories

Firewalls
SonicWall NSA Series
Firewalls
SonicWall SuperMassive 9000 Series
Firewalls
SonicWall SuperMassive E10000 Series
Firewalls
TZ Series
not finding your answers?
Ask the Community
Chat
Do we support Perfect Forward Secrecy (PFS) on SSL VPN Connection?