Data Integrity

Data integrity ensures that data is not altered in transit.

Secure Shell connections use MACs (message authentication codes) to ensure data integrity. The client and server independently compute a hash for each packet of transferred data. If the message has changed in transit, the hash values are different and the packet is rejected. The MAC used for a given session is the MAC highest in the client's order of preference that is also supported by the server.

Reflection for Secure IT supports the following MAC standards:

  • hmac-sha1
  • hmac-md5
  • hmac-sha1-96
  • hmac-md5-96
  • hmac-ripemd-160
  • hmac-sha256
  • hmac-sha2-256
  • hmac-sha512
  • hmac-sha2-512

Related Topics

Configuring Ciphers and MACs