The following lists the ORB security properties that apply to the Borland Security Service for C++ applications.
ORB Security Properties for C++
| Property | Description | Default |
|---|---|---|
vbroker.security.logLevel |
Controls the degree of logging. 0 means no logging and 8 means maximum logging. |
0 |
vbroker.security.secureTransport |
Controls whether the transport connection is encrypted or not. If set to true, transport messages are encrypted. If set to false they are not encrypted. |
true |
vbroker.security.alwaysSecure |
Client side property you use together with the vbroker.security.secureTransport property. Controls client side default Quality of Protection (QoP). If both are set to true, then transport QoP is set to SECURE_ONLY (the client needs only secure transport). If either of these properties is set to false, then the client does not mandate security at transport. |
false |
vbroker.security.disable |
If set to true, disables all security. If set to false, all security is enabled. |
true |
vbroker.security.transport.protocol |
Use to select a security transport protocol. Possible values are: SSL, SSLv2, SSLv3, TLS, and TLSv1. For descriptions of these, go to http://www.java.sun.com/products/jsse/doc/guide/API_users_guide.html#SSC |
TLSv1 |
vbroker.security.peerAuthenticationMode |
Denotes peer authentication mode. Same as in 4.x. However, due to JSSE restrictions, request and request_and_trust modes cannot receive peer certificate chain in 5.x. Possible values are: None (no authentication of peer identity performed), Require (requires an identity to be presented by the peer. If no identity is presented, the connection is closed.), Require_and_trust (same as Require with the additional condition that the identity must be trusted, or the connection is closed.), Request (requests the peer identity, but still allows connection if no identity is presented from peer.), Request_and_trust (same as Request with the additional condition that if an identity is presented, the identity must be trusted, or the connection is closed.). |
For server, require_and_trust. For client, |
vbroker.security.trustpointsRepository |
Use to specify the location of a list of trusted certificates. The two possible options are: pointing to the directory containing trusted certificates and CRLs, or to a trusted keystore whose entries are TrustedCertificateEntry. Possible values are: Directory:<dir containing trusted certs> or KeyStore:<KeyStore file path>. |
n/a |
vbroker.security.cipherList |
Use to specify a list of valid SSL ciphers to be enabled on startup. | n/a |