Guidelines for the Selection, Configuration, and Use of Transport Layer Security (TLS) Implementations

William T. Polk; Kerry A. McKay; Santosh Chokhani

doi:http://dx.doi.org/10.1002/https://dx.doi.org/10.6028/NIST.SP.800-52r1

Published: April 28, 2014

Author(s)

William T. Polk, Kerry A. McKay, Santosh Chokhani

Abstract

Transport Layer Security (TLS) provides mechanisms to protect sensitive data during electronic dissemination across the Internet. This Special Publication provides guidance to the selection and configuration of TLS protocol implementations while making effective use of Federal Information Processing Standards (FIPS) and NIST-recommended cryptographic algorithms, and requires that TLS 1.1 configured with FIPS-based cipher suites as the minimum appropriate secure transport protocol and recommends that agencies develop migration plans to TLS 1.2 by January 1, 2015. This Special Publication also identifies TLS extensions for which mandatory support must be provided and other recommended extensions.

Citation: Special Publication (NIST SP) - 800-52 Rev 1

Report Number:

800-52 Rev 1

NIST Pub Series: Special Publication (NIST SP)

Pub Type: NIST Pubs

Supersedes

Guidelines for the Selection and Use of Transport Layer Security (TLS) Implementations

Download Paper

https://dx.doi.org/10.6028/NIST.SP.800-52r1

Keywords

information security, network security, SSL, TLS, Transport Layer Security

Cybersecurity

Created April 28, 2014, Updated February 19, 2017