Steven
Thu Dec 18 21:24:40 CST 2003
The KB811834 link explains it pretty well. A quote is below. --- Steve
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and
signing.
If this setting is enabled, the security channel provider of the operating system is
forced to use only the following security algorithms: TLS_RSA_WITH_3DES_EDE_CBC_SHA.
This behavior forces the security channel provider to negotiate only the stronger
Trasnport Layer Security (TLS) 1.0 protocol when you use applications such as
Microsoft Windows Messenger, Microsoft MSN Messenger, and Internet Explorer to visit
SSL sites.
"Samir Abboushi" <anonymous@discussions.microsoft.com> wrote in message
news:073f01c3c580$0fa911d0$a001280a@phx.gbl...
> Thanks Steven for your response. It sounds like you are
> confirming that 3DEX prevents me from using SSL2 and
> SSL3. Do you have any references or links you are aware
> of that discusses this?
>
> With Regards-
> Samir
>
> >-----Original Message-----
> >About all you can do is try to enable TLS, but that is
> not in wide spread use. Even
> >if you don't use 3DES, your EFS encrypted files will be
> extremely secure as long as
> >EFS user private key has been exported/deleted from the
> computer when there is the
> >chance of it not being physically secure. --- Steve
> >
> >
http://support.microsoft.com/default.aspx?scid=kb;en-
> us;811834
> >
> >"Samir Abboushi" <anonymous@discussions.microsoft.com>
> wrote in message
> >news:03c101c3c521$d5d562f0$a301280a@phx.gbl...
> >> I chose to take advantage of the best encryption offered
> >> by XP Pro by enabling 3DES encryption. Nasty side
> >> effect: whenever I try to access a secure website, I
> >> receive "The page cannot be displayed". As soon as I
> >> disable 3DES, accessing secure websites works fine.
> >> Anybody have any input on this (other than "why use
> 3DES"
> >> or "don't use 3DES!) Thanks-
> >>
> >> Samir
> >
> >
> >.
> >