Function: nsm-protocol-check--null-suite

nsm-protocol-check--null-suite is a byte-compiled function defined in nsm.el.gz.

Signature

(nsm-protocol-check--null-suite HOST PORT STATUS &optional SETTINGS)

Documentation

Check for NULL cipher suites.

This function checks for NULL key exchange, cipher and message authentication code key derivation function. As the name suggests, a NULL assigned for any of the above disables an integral part of the security properties that makes up the TLS protocol.

Source Code

;; Defined in /usr/src/emacs/lisp/net/nsm.el.gz
;; Full suite checks

(defun nsm-protocol-check--null-suite (_host _port status &optional _settings)
  "Check for NULL cipher suites.

This function checks for NULL key exchange, cipher and message
authentication code key derivation function.  As the name
suggests, a NULL assigned for any of the above disables an
integral part of the security properties that makes up the TLS
protocol."
  (let ((suite (nsm-cipher-suite status)))
    (and (string-match "\\bNULL\\b" suite)
         (format-message
          "NULL cipher suite (%s) violates authenticity, integrity, or confidentiality guarantees"
          suite))))