AnsweredAssumed Answered

Google VS Qualys

Question asked by Justin Aggus on Apr 20, 2015
Latest reply on Apr 28, 2015 by Ivan Ristić

I'm Using IIS 7.5:

 

The only way I can find to get Google Chrome to show my website has "Modern Cryptography"

 

Is supporting this:    TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 (0x9e)   DH 1024 bits (p: 128, g: 128, Ys: 128)

 

But Qualys reports that this is WEAK.

 

So who is crazy Me, Qualys, or Google?

 

BTW

Fidelity.com

Chase.com

BankofAmerica.com

 

All show up as "Obsolete Cryptography" in Google Chrome...

Outcomes