Use SSL

This section describes why SSL is a good choice for XCA.

Consider using the Application Server SSL service for the XCA application. The XCA application is a standard Java EE application and can utilize an industry standard security infrastructure and framework. There is no configuration required on the XCA application. The application Server (WebLogic) provides SSL service. For more information about configuring SSL to achieve SSL security for XCA, see the Application Server documentation.

When SSL or TLS is configured, use TLS_RSA_WITH_AES_128_CBC_SHA cipher instead of SSL_RSA_WITH_3DES_EDE_CBC_SHA for TLS authentication.