AnsweredAssumed Answered

Servers using Weak AEAD Cipher Suites not receiving AEAD warning

Question asked by David Isaacs on Jun 13, 2018
Latest reply on Jun 25, 2018 by Lily Wilson

If a server supports only WEAK cipher suites for AEAD, shouldn't the server receive the warning

 

This server does not support Authenticated encryption (AEAD) cipher suites. Grade capped to B.

 

and receive a B instead of an A+?

 

 

 

Example: https://www.ssllabs.com/ssltest/analyze.html?d=support.microsoft.com

 

TLS_RSA_WITH_AES_256_GCM_SHA384 (0x9d)   WEAK
TLS_RSA_WITH_AES_128_GCM_SHA256 (0x9c)   WEAK

(only AEAD Cipher Suites supported)

Outcomes