25Ağu
Weak SSL/TLS Ciphers
Where can I get the definitive list of weak ciphers? Various tools are listing ciphers as weak but these vary somewhat. Which CBC ciphers specifically currently suffer with known weaknesses and where can I get more information on this?
The two cipher suites I am investigating are: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 and TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-4 lists them both as DTLS-OK -Y but not recommended; Recommended - N. Not very proficient in reading RFCs so the linked RFC8422(https://www.rfc-editor.org/rfc/rfc8422.html) doesn't help as far as I can see?
