Guidelines for the Selection, Configuration, and Use of Transport Layer Security (TLS) Implementations

Published: April 28, 2014

Author(s)

William T. Polk, Kerry A. McKay, Santosh Chokhani

Abstract

Transport Layer Security (TLS) provides mechanisms to protect sensitive data during electronic dissemination across the Internet. This Special Publication provides guidance to the selection and configuration of TLS protocol implementations while making effective use of Federal Information Processing Standards (FIPS) and NIST-recommended cryptographic algorithms, and requires that TLS 1.1 configured with FIPS-based cipher suites as the minimum appropriate secure transport protocol and recommends that agencies develop migration plans to TLS 1.2 by January 1, 2015. This Special Publication also identifies TLS extensions for which mandatory support must be provided and other recommended extensions.
Citation: Special Publication (NIST SP) - 800-52 Rev 1
Report Number:
800-52 Rev 1
Pub Type: NIST Pubs

Supersedes

Download Paper

Keywords

information security, network security, SSL, TLS, Transport Layer Security
Created April 28, 2014, Updated November 10, 2018