Cipher Suites (in order of preference) |
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 (0xc02c )
Forward Secrecy
|
256 |
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 (0xc02b )
Forward Secrecy
|
128 |
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030 )
Forward Secrecy
|
256 |
TLS_RSA_WITH_AES_256_GCM_SHA384 (0x9d ) WEAK
|
256 |
TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 (0xc02e )
|
256 |
TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384 (0xc032 )
|
256 |
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 (0x9f )
Forward Secrecy
|
256 |
TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 (0xa3 )
Forward Secrecy2
|
256 |
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f )
Forward Secrecy
|
128 |
TLS_RSA_WITH_AES_128_GCM_SHA256 (0x9c ) WEAK
|
128 |
TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 (0xc02d )
|
128 |
TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256 (0xc031 )
|
128 |
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 (0x9e )
Forward Secrecy
|
128 |
TLS_DHE_DSS_WITH_AES_128_GCM_SHA256 (0xa2 )
Forward Secrecy2
|
128 |
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 (0xc024 ) WEAK
|
256 |
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028 ) WEAK
|
256 |
TLS_RSA_WITH_AES_256_CBC_SHA256 (0x3d ) WEAK
|
256 |
TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384 (0xc026 ) WEAK
|
256 |
TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384 (0xc02a ) WEAK
|
256 |
TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 (0x6b ) WEAK
|
256 |
TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 (0x6a ) WEAK
|
256 |
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA (0xc00a ) WEAK
|
256 |
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014 ) WEAK
|
256 |
TLS_RSA_WITH_AES_256_CBC_SHA (0x35 ) WEAK
|
256 |
TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA (0xc005 ) WEAK
|
256 |
TLS_ECDH_RSA_WITH_AES_256_CBC_SHA (0xc00f ) WEAK
|
256 |
TLS_DHE_RSA_WITH_AES_256_CBC_SHA (0x39 ) WEAK
|
256 |
TLS_DHE_DSS_WITH_AES_256_CBC_SHA (0x38 ) WEAK
|
256 |
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 (0xc023 ) WEAK
|
128 |
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (0xc027 ) WEAK
|
128 |
TLS_RSA_WITH_AES_128_CBC_SHA256 (0x3c ) WEAK
|
128 |
TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 (0xc025 ) WEAK
|
128 |
TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 (0xc029 ) WEAK
|
128 |
TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 (0x67 ) WEAK
|
128 |
TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 (0x40 ) WEAK
|
128 |
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA (0xc009 ) WEAK
|
128 |
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013 ) WEAK
|
128 |
TLS_RSA_WITH_AES_128_CBC_SHA (0x2f ) WEAK
|
128 |
TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA (0xc004 ) WEAK
|
128 |
TLS_ECDH_RSA_WITH_AES_128_CBC_SHA (0xc00e ) WEAK
|
128 |
TLS_DHE_RSA_WITH_AES_128_CBC_SHA (0x33 ) WEAK
|
128 |
TLS_DHE_DSS_WITH_AES_128_CBC_SHA (0x32 ) WEAK
|
128 |
TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA (0xc008 ) WEAK
|
112 |
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (0xc012 ) WEAK
|
112 |
TLS_RSA_WITH_3DES_EDE_CBC_SHA (0xa ) WEAK
|
112 |
TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA (0xc003 ) WEAK
|
112 |
TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA (0xc00d ) WEAK
|
112 |
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA (0x16 ) WEAK
|
112 |
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA (0x13 ) WEAK
|
112 |
TLS_EMPTY_RENEGOTIATION_INFO_SCSV (0xff ) |
- |
(1) When a browser supports SSL 2, its SSL 2-only suites are shown
only on the very first connection to this site. To see the suites,
close all browser windows, then open this exact page directly. Don't refresh.
|
(2) Cannot be used for Forward Secrecy because they require DSA keys, which are effectively limited to 1024 bits.
|