-
Type:
Backport
-
Resolution: Delivered
-
Priority:
P3
-
Affects Version/s: 7u321
-
Component/s: security-libs
The default priority order of the cipher suites for TLS 1.0 to TLS 1.2 has been adjusted. Some of the intermediate suites have been lowered in priority, as follows:
- Cipher suites that do not preserve forward secrecy have been moved lower in priority than those that do support forward secrecy
- Cipher suites that use SHA-1 have been moved lower in priority
The CBC suites will continue to be preferred over the GCM suites.
- Cipher suites that do not preserve forward secrecy have been moved lower in priority than those that do support forward secrecy
- Cipher suites that use SHA-1 have been moved lower in priority
The CBC suites will continue to be preferred over the GCM suites.
- backport of
-
-
- Closed
-