RFC5746 and wM 6.5 IS

Hi i am administrating wM in our company, and one of our business partners asks about RFC5746 - http://tools.ietf.org/html/rfc5746

It seams that you require us to send SCSV for signaling in the TLS Client Hello packet, the recommended way to initialize the SSL session is to send TLS Renego extension in TLS Client Hello according tro RFC5746


What signal mechanism we use… ( TLS Renego extension in TLS Client Hello ) or ( SCSV for signaling in TLS Client Hello packet )

I just took over, but cant find much on this matters online and internally. A windows patch for this MS10-049 was released… Does wM set up the SSL connections using the OS? or Java? bit lost here

Due to a security issue with the TSL/SSL protocol not properly associating renegotiation handshakes with an existing connection - the webMethods integration server is not configured to allow SSL renegotiation by default.

A Microsoft security update (KB980436 - see http://support.microsoft.com/kb/980436/en ) complying with the following standard: IETF RFC5746 (http://tools.ietf.org/html/rfc5746) forces the client to try to use TLS renegotiation…

solution is to get client to uninstall this patch or install WM fix 23 in where enabling this is a setting in extended settings