topic CHACHA20_POLY1305 Support? in General Topics https://live.paloaltonetworks.com/t5/general-topics/chacha20-poly1305-support/m-p/213732#M62145 <P>Anyone know or heard when we might get&nbsp;CHACHA20_POLY1305 cipher support for Inbound Decryption?</P><P>&nbsp;</P><P>I finally came across a server using it... my Enterprise Services team is setting up a Papercut on-prem server and it seems to be running multiple web services.&nbsp; One service is using our standard public cert we've purchased with standard cipher suites and the other is using a self-signed Papercut cert&nbsp;(seems to just be for mobility printing) and supports the afforementioned cipher.&nbsp; I'm considering decryption here so we can do app visibility what would otherwise appear as&nbsp; SSL over TCP 9164... alternatively I guess I could create an app for it or multiple security policy rules but decryption just seems cleaner.&nbsp; We were able to get a copy of the cert and key for this.</P><P>&nbsp;</P><P>We're investigating how to disable that cipher on the server but, so far, have only found instructions on cipher modification for the other service.</P> Wed, 09 May 2018 12:55:41 GMT jsalmans 2018-05-09T12:55:41Z CHACHA20_POLY1305 Support? https://live.paloaltonetworks.com/t5/general-topics/chacha20-poly1305-support/m-p/213732#M62145 <P>Anyone know or heard when we might get&nbsp;CHACHA20_POLY1305 cipher support for Inbound Decryption?</P><P>&nbsp;</P><P>I finally came across a server using it... my Enterprise Services team is setting up a Papercut on-prem server and it seems to be running multiple web services.&nbsp; One service is using our standard public cert we've purchased with standard cipher suites and the other is using a self-signed Papercut cert&nbsp;(seems to just be for mobility printing) and supports the afforementioned cipher.&nbsp; I'm considering decryption here so we can do app visibility what would otherwise appear as&nbsp; SSL over TCP 9164... alternatively I guess I could create an app for it or multiple security policy rules but decryption just seems cleaner.&nbsp; We were able to get a copy of the cert and key for this.</P><P>&nbsp;</P><P>We're investigating how to disable that cipher on the server but, so far, have only found instructions on cipher modification for the other service.</P> Wed, 09 May 2018 12:55:41 GMT https://live.paloaltonetworks.com/t5/general-topics/chacha20-poly1305-support/m-p/213732#M62145 jsalmans 2018-05-09T12:55:41Z Re: CHACHA20_POLY1305 Support? https://live.paloaltonetworks.com/t5/general-topics/chacha20-poly1305-support/m-p/213810#M62168 <P>In order to get more information on this, you need to ask your sales engineer.&nbsp;</P><P>Maybe there is an existing feature request that you can vote for or you could create a new one this way.&nbsp;</P> Wed, 09 May 2018 21:26:28 GMT https://live.paloaltonetworks.com/t5/general-topics/chacha20-poly1305-support/m-p/213810#M62168 Remo 2018-05-09T21:26:28Z