cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Does anyone have experience with RC5 encryption and Citrix monitoring?

bcox2
Organizer

I know if we leave full RC5 encryption there is no way to get user information from those packets, but my Citrix team asked about using "



  • RC5 (128 bit) logon only. Encrypts the logon data with
    RC5 128-bit encryption and the client connection using Basic encryption. "

Based on the description this setting is still going to keep us from getting the user identification, but I wanted to check with other parties to see if my assumption is correct.

Thanks

Brian

2 REPLIES 2

wojciech_kurek
Inactive

Brian,

Logon only RC5 encryption will still render the session impossible to decode. This is caused by the fact, that the session data is also compressed and compression comes after encryption. When the initial (logon) session stage will be encrypted with RC5 we will lose part of the decompression history and will be unable to perform any further decoding.

In theory this should be possible with compression disabled, but I believe that currently the decode will still stop session decoding at the moment RC5 is activated (since compression is almost always enabled).

However as far as I know, Citrix doesn't recommend using RC5 encryption as it is highly vulnerable to man-in-the-middle attacks and recommends using SSL instead.

Wojtek.

chris_v
Dynatrace Pro
Dynatrace Pro

Correct, Citrix no longer recommends new deployments with RC5.

SSL option is better overall for security, and better for DCRUM too.