| |
AEADCipher
Boolean |
Indicates whether the encryption algorithm used is an AEAD cipher.
|
ChainValidationDetails
Integer |
The details of a certificate chain validation outcome. They may often suggest what reasons that contributed to the overall validation result.
Returns a bit mask of the following options:
| | | cvrBadData | 0x0001 | One or more certificates in the validation path are malformed
| | cvrRevoked | 0x0002 | One or more certificates are revoked
| | cvrNotYetValid | 0x0004 | One or more certificates are not yet valid
| | cvrExpired | 0x0008 | One or more certificates are expired
| | cvrInvalidSignature | 0x0010 | A certificate contains a non-valid digital signature
| | cvrUnknownCA | 0x0020 | A CA certificate for one or more certificates has not been found (chain incomplete)
| | cvrCAUnauthorized | 0x0040 | One of the CA certificates are not authorized to act as CA
| | cvrCRLNotVerified | 0x0080 | One or more CRLs could not be verified
| | cvrOCSPNotVerified | 0x0100 | One or more OCSP responses could not be verified
| | cvrIdentityMismatch | 0x0200 | The identity protected by the certificate (a TLS endpoint or an e-mail addressee) does not match what is recorded in the certificate
| | cvrNoKeyUsage | 0x0400 | A mandatory key usage is not enabled in one of the chain certificates
| | cvrBlocked | 0x0800 | One or more certificates are blocked
| | cvrFailure | 0x1000 | General validation failure
| | cvrChainLoop | 0x2000 | Chain loop: one of the CA certificates recursively signs itself
| | cvrWeakAlgorithm | 0x4000 | A weak algorithm is used in one of certificates or revocation elements
| | cvrUserEnforced | 0x8000 | The chain was considered invalid following intervention from a user code
|
|
ChainValidationResult
TsbxChainValidities |
The outcome of a certificate chain validation routine.
Available options:
| | | cvtValid | 0 | The chain is valid
| | cvtValidButUntrusted | 1 | The chain is valid, but the root certificate is not trusted
| | cvtInvalid | 2 | The chain is not valid (some of certificates are revoked, expired, or contain an invalid signature)
| | cvtCantBeEstablished | 3 | The validity of the chain cannot be established because of missing or unavailable validation information (certificates, CRLs, or OCSP responses)
|
Use the ValidationLog property to access the detailed validation log.
|
Ciphersuite
String |
The cipher suite employed by this connection.
For TLS connections, this property returns the ciphersuite that was/is employed by the connection.
|
ClientAuthenticated
Boolean |
Specifies whether client authentication was performed during this connection.
|
ClientAuthRequested
Boolean |
Specifies whether client authentication was requested during this connection.
|
ConnectionEstablished
Boolean |
Indicates whether the connection has been established fully.
|
ConnectionID
TBytes |
The unique identifier assigned to this connection.
|
DigestAlgorithm
String |
The digest algorithm used in a TLS-enabled connection.
|
EncryptionAlgorithm
String |
The symmetric encryption algorithm used in a TLS-enabled connection.
|
Exportable
Boolean |
Indicates whether a TLS connection uses a reduced-strength exportable cipher.
|
KeyExchangeAlgorithm
String |
The key exchange algorithm used in a TLS-enabled connection.
|
KeyExchangeKeyBits
Integer |
The length of the key exchange key of a TLS-enabled connection.
|
NamedECCurve
String |
The elliptic curve used in this connection.
|
PFSCipher
Boolean |
Indicates whether the chosen ciphersuite provides perfect forward secrecy (PFS).
|
PreSharedIdentityHint
String |
A hint professed by the server to help the client select the PSK identity to use.
|
PublicKeyBits
Integer |
The length of the public key.
|
ResumedSession
Boolean |
Indicates whether a TLS-enabled connection was spawned from another TLS connection
|
SecureConnection
Boolean |
Indicates whether TLS or SSL is enabled for this connection.
|
ServerAuthenticated
Boolean |
Indicates whether server authentication was performed during a TLS-enabled connection.
|
SignatureAlgorithm
String |
The signature algorithm used in a TLS handshake.
|
SymmetricBlockSize
Integer |
The block size of the symmetric algorithm used.
|
SymmetricKeyBits
Integer |
The key length of the symmetric algorithm used.
|
TotalBytesReceived
Int64 |
The total number of bytes received over this connection.
|
TotalBytesSent
Int64 |
The total number of bytes sent over this connection.
|
ValidationLog
String |
Contains the server certificate's chain validation log.
This information may be very useful in investigating chain validation failures.
|
Version
String |
Indicates the version of SSL/TLS protocol negotiated during this connection.
|