AnsweredAssumed Answered

Chrome reports we're using obsolete cryptography

Question asked by EJ Wee on Oct 5, 2015
Latest reply on Oct 6, 2015 by noneofthat

We noticed that Chrome is reporting our HTTPS is using obsolete security. I ran a test on SSL Labs and we came back with an A.

However Chrome says:

The connection uses TLS 1.2

The connection is encrypted using AES_256_CBC, with SHA1 for message authentication and RSA as the key exchange mechanism.


According to the SSL test, we support TLS 1.2, 1.1 and 1.0 . SSL 3 and SSL 2 are not supported. We are supporting these cipher suites:


Cipher Suites (SSL 3+ suites in server-preferred order; deprecated and SSL 2 suites at the end)
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030 ECDH 256 bits (eq. 3072 bits RSA)   FS256
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f ECDH 256 bits (eq. 3072 bits RSA)   FS128
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028 ECDH 256 bits (eq. 3072 bits RSA)   FS256
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014 ECDH 256 bits (eq. 3072 bits RSA)   FS256
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (0xc012 ECDH 256 bits (eq. 3072 bits RSA)   FS112
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (0xc027 ECDH 256 bits (eq. 3072 bits RSA)   FS128
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013 ECDH 256 bits (eq. 3072 bits RSA)   FS128
TLS_RSA_WITH_AES_256_CBC_SHA256 (0x3d)256
TLS_RSA_WITH_AES_256_CBC_SHA (0x35)256
TLS_RSA_WITH_AES_128_CBC_SHA256 (0x3c)128
TLS_RSA_WITH_AES_128_CBC_SHA (0x2f)128
TLS_RSA_WITH_3DES_EDE_CBC_SHA (0xa)112


How can i fix this error?

Thanks in advance

Outcomes