EUEM - What are the security consequences of disabling Diffie-Hellman based ciphersuites for monitoring by EUEM ?

Version 1
    Share This:

    This document contains official content from the BMC Software Knowledge Base. It is automatically updated when the knowledge article is modified.


    PRODUCT:

    BMC Real End User Experience Monitoring - Software Edition


    COMPONENT:

    TrueSight Collector


    APPLIES TO:

    BMC Real End User Experience Monitoring Software Edition - Any Version



    QUESTION:

    What are the security consequences when disabling Diffie-Hellman based ciphersuites on the web server to allow monitoring by the BMC Real End User Experience Monitoring - Software Edition product?


    ANSWER:

     

    Disabling Diffie-Hellman based ciphersuite is a decrease in security for the web applications using SSL.

    Depending on the type of application, this may make not affect the customer or may cause the application to be unusable.

    For example, a web site that publishes marketing information does not need the highest level of SSL encryption so disabling Diffie-Helman ciphersuites is acceptable.

    On the other hand an application holding medical records will require the highest level of SSL encryption to be in compliance with government requirements.

       The customer will need to make the decision to disable Diffie-Hellman ciphersuites or not.

     


    Article Number:

    000148348


    Article Type:

    FAQ/Procedural



      Looking for additional information?    Search BMC Support  or  Browse Knowledge Articles