whitepaper

HP Jetdirect and SSL/TLS

June 2008

Table of Contents:

 

Introduction .....................................................................................................................................

1

What is SSL/TLS? ............................................................................................................................

2

HTTPS Decoded...............................................................................................................................

3

Digital Certificates ...........................................................................................................................

9

Public Key Infrastructure and Public Key Certificate Basics ..................................................................

12

SSL/TLS Protocol Basics ..................................................................................................................

20

Using HTTPS with HP Jetdirect .........................................................................................................

26

A Detailed Look at the SSL/TLS Connection.......................................................................................

52

SSL/TLS Server Settings ..................................................................................................................

60

HP Jetdirect as an SSL/TLS Client.....................................................................................................

61

SSL/TLS Client: Understanding Certificate Chains ..............................................................................

77

SSL/TLS Client: Certificates and Name Verification ............................................................................

83

IPP over SSL/TLS ............................................................................................................................

89

HP Jetdirect Certificate Guidelines....................................................................................................

94

Embedded Devices and Digital Certificates .......................................................................................

94

Which HP Jetdirect Products Support SSL/TLS? ..................................................................................

95

Summary ......................................................................................................................................

95

Introduction

HP Jetdirect introduced SSL/TLS support in early 2002 with the 615n EIO Print Server. A free firmware upgrade allowed the 610n EIO print server, shipped in 2000, the same capability. Suddenly, a few million HP Jetdirect EIO cards had SSL/TLS capability. Why?

The answer was secure management. HP printing and imaging devices were becoming more complex and more feature oriented. They were becoming valuable assets to a company’s infrastructure. Having the ability to use a browser to manage a device using HTTP was one thing, using the same browser and using HTTPS to manage it securely was a great benefit. Unfortunately, many users of HTTPS are under a false sense of security because they have not deployed SSL/TLS

1