Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

Android, selecting a Cipher suite

I have the code base for an application but I cannot see where I can find the cipher suite it uses when making outbound connections. Can anyone point me in the right direction. When I open the project in Android Studio right click app-> open module settings -> Flavors tab -> Min Sdk Version is set to 15, Target Sdk Version is set to API 21: Android 5.0 (Lollipop)

Thanks, P

like image 497
user1054637 Avatar asked Jul 28 '16 15:07

user1054637


1 Answers

Cipher suite used depends on server ssl certificate and ciphers it supports. You can check available cipher suits for different Android versions here:

https://developer.android.com/reference/javax/net/ssl/SSLEngine.html

Note the following fragment:

These kinds of protection are specified by a "cipher suite", which is a combination of cryptographic algorithms used by a given SSL connection. During the negotiation process, the two endpoints must agree on a cipher suite that is available in both environments. If there is no such suite in common, no SSL connection can be established, and no data can be exchanged.

As you see, your Android 5.0 can use many different suites depending on the certificate type.

like image 53
Jehy Avatar answered Nov 10 '22 13:11

Jehy