Guidelines for TLS cipher suites?

Asked Jan 04 '17 at 09:56

Active Jan 04 '17 at 10:40

Viewed 354 times

3

Other than OWASP, are there any other guidelines for recommended TLS/SSL versions as well as their specific cipher suites?

asked Jan 04 '17 at 09:56

user1118764

401
5
12

1 Answers1

5

Mozilla: https://mozilla.github.io/server-side-tls/ssl-config-generator/
SSL Labs: https://github.com/ssllabs/research/wiki/SSL-and-TLS-Deployment-Best-Practices
Cipherli.St: https://cipherli.st/
OWASP: https://www.owasp.org/index.php/SSL_Best_Practices
- And here: especially the "Related articles" section at the bottom: https://www.owasp.org/index.php/Transport_Layer_Protection_Cheat_Sheet
Similar question: Now that it is 2015, what SSL/TLS cipher suites should be used in a high security HTTPS environment?

edited Jan 04 '17 at 10:40

answered Jan 04 '17 at 10:06

StackzOfZtuff

17,783
1
50
86