skip to main content
Reference : Connection Property Descriptions : CryptoProtocolVersion
  

CryptoProtocolVersion

Purpose

Specifies a cryptographic protocol or comma-separated list of cryptographic protocols that can be used when SSL is enabled (EncryptionMethod=SSL).

Valid Values

cryptographic_protocol [[, cryptographic_protocol ]...]
where:
cryptographic_protocol
is one of the following cryptographic protocols:
TLSv1.2 | TLSv1.1 | TLSv1 | SSLv3 | SSLv2
Caution: To avoid vulnerabilities associated with SSLv3 and SSLv2, good security practices recommend using TLSv1 or higher.

Example

If your server supports TLSv1.1 and TLSv1.2, you can specify acceptable cryptographic protocols with the following key-value pair:
CryptoProtocolVersion=TLSv1.1,TLSv1.2

Notes

*When multiple protocols are specified, the driver uses the highest version supported by the server. If none of the specified protocols are supported by the server, the connection fails and the driver returns an error.
*When no value has been specified for CryptoProtocolVersion, the cryptographic protocol used depends on the highest protocol version supported by the server and the highest protocol version supported by the JDK. The driver uses the lower version of these two protocols to establish the SSL connection. Refer to the database management system documentation for information on which cryptographic protocols are supported.

Default

None

Data Type

String

See also

*Data Encryption Properties
*Using Data Encryption
*EncryptionMethod