AnsweredAssumed Answered

Chrome: Modern vs Obsolete Crytography

Question asked by Jeffrey Wen on Jun 11, 2015
Latest reply on Jun 20, 2015 by Lily Wilson

Hi everyone!

 

Here is the following SSLProtocol & SSLCipherSuite I use:

 

SSLProtocol -All +TLSv1.2

SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH

 

This results in SSLLabs give in an A+ with a score of 90 on Cipher Strength

 

If I change my configuration to not accept 128 bits:

 

SSLProtocol -All +TLSv1.2

SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH:!AES128

 

The results in SSLLabs give me an A+ with a score of 100 on Cipher Strength

 

With the first configuration, Google Chrome will say I am using modern cryptography (Cipher Strength of 90)

 

With the second configuration, Google Chrome will say I am using obsolete cryptography (Cipher Strength of 100)

 

Does anyone know why Google Chrome does that?

Outcomes