Chapter 4. Security; Secure Access To The Idu Web Interface; Verifying Public Key Certificate Details; Modifying The Ssl Timeout - EMS 2000 IDU Series User Manual

Chapter 4
4.1

Secure Access to the IDU Web Interface

4.1.1 Verifying Public Key Certificate Details

4.1.2 Modifying the SSL Timeout

Series 2000/3000 IDU User's Manual
Revision P4
Security
Access to IDU web pages is encrypted and secure.
The web browser used to access the IDU web interface must support SSL 3.0, RSA with
512-bit exchange and DES with 56-bit encryption. Only Netscape Communicator (version
4.61 or higher) and Internet Explorer (version 5.5 or higher) support this level of security.
• To avoid "man-in-the-middle" attacks, the user can verify public key certificate
details for the web pages. See
• Some browsers and Windows operating systems use a short (30 second to 2 minute)
default time-out for encrypted web pages. To modify this timeout, see
below.
Note: When entering the IDU's IP address in the web browser, whether
the OAM IP address over satellite or the ethernet IP address locally,
remember to add the prefix https://
To avoid "man-in-the-middle" attacks, the user can verify the certificate details (public
key). The public key value is:
"3048 0241 00E0 9BB4 DF32 BFE4 9AC8 1FE3 D182 F9E7 9B53 A253 3E9C 6085
C12F 0839 3DE1 80F3 43CA 82E8 28BE 58B8 C311 2654 CC45 8EDE 31AC 9CF1
8A5C 3442 E0CD B2DA FA22 32F6 E102 0301 0001"
Equivalently, the certificate fingerprint should be equal to:
"04:82:BA:59:34:0F:CB:75:1F:EA:0E:0C:20:C0:D9:02"
Some browsers and Windows operating systems use a short (30 second to 2 minute)
default time-out for encrypted web pages. This means that after a short period of inactiv-
Page 31
section 4.1.1 below.
section 4.1.2