Skip to main content
Waters Employee Login
 
Waters

Does NuGenesis 9 support SHA-2 algorithms of the TLS 1.x protocols for LDAPS and HTTPS? - WKB62012

  1. Last updated
  2. Save as PDF
Article number: 62012

ENVIRONMENT

  • NuGenesis 9 SDMS
  • NuGenesis 9 LMS

ANSWER

The short answer is Yes; NuGenesis 9 supports SHA-2 and TLS up to v1.2.

The long answer:

SHA-2 is an encryption algorithm that can be used as the hash function in the TLS 1.2 protocol and also as the encryption algorithm for certificates for server authentication. 

NuGenesis 9 can use SHA-2/TLS 1.x in a few areas:

  • SDMS WebVision, LMS SampleShare: NuGenesis 9 does support HTTPS for connections to the WebVision and SampleShare web apps. Here, the limiting factors are the protocols supported by the web server's OS, IIS, the client's OS, and the Web browser. Windows Server 2019, Server 2016, Server 2012, IIS, IE 11, and Windows 7+ all support TLS 1.2, so by definition they support SHA-2 encryption.  Unfortunately, Schannel in those Windows versions does not support the use of TLS 1.3, which means that te NuGenesis web apps cannot make use of TLS 1.3
  • LDAPS authentication in NuGenesis LMS: the controlling factor here for TLS/SHA support is the version of Java Runtime, as embedded in the LMS server. As of NG9, the LMS server does support TLS 1.2/SHA-2 for LDAPS authentication, because the LDAPS communication is handled by the Java environment, and the JRE embedded in the LMS server supports TLS 1.2 and SHA-2.  The version of Java as supplied with NuGenesis 9 LMS is 1.8 update 152, while TLS 1.3 was implemented in v1.8 update 261
  • LDAPS authentication in NuGenesis SDMS: the libraries that handle TLS and LDAP communications for SDMS applications, starting in the initial release of NuGenesis 9, support SHA-2 and up to TLS 1.2.  These libraries do not support TLS 1.3

Not able to find a solution? Click here to request help.