Version 2017 R6: AES/GCM in TLS, RSA/PSS and RSA/OAEP in S/MIME

Support for RSASSA-PSS in S/MIME

Our MailMessage and MimeEntity classes now support RSA signatures with PSS padding (RSASSA-PSS) based on SHA-1, SHA-256, SHA-384 and SHA-512. These algorithms are available on all supported platforms including .NET 2.0/3.5 and .NET Compact Framework. We also changed default hashing algorithm in MailMessage.Sign method to SHA-256 for RSA certificates.

Support for RSAES-OAEP in S/MIME

Our MailMessage and MimeEntity classes now support RSA encryption with OAEP padding (RSAES-OAEP) based on SHA-1, SHA-256, SHA-384 and SHA-512. These algorithms are available on all supported platforms including .NET 2.0/3.5 and .NET Compact Framework. We also changed default encryption algorithm in MailMessage.Encrypt method to AES with 256-bit key.

AES/GCM support in TLS/SSL

We added support for TLS ciphers based on AES/GCM (AES in Galois/Counter Mode) to Rebex FTP/SSL, HTTPS, Secure Mail and Telnet. The following new ciphers are now enabled by default:

  • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
  • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
  • TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
  • TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
  • TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
  • TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
  • TLS_RSA_WITH_AES_128_GCM_SHA256
  • TLS_RSA_WITH_AES_256_GCM_SHA384

These ciphers are available on all supported platforms including .NET 2.0/3.5 and .NET Compact Framework.

And more...

For a complete list of changes in 2017 R6, see the release history.