SSL – Check your cypher suites and SSL rating

For any website running SSL and HTTPS with a security certificate you can check your public facing rating by using a handy tool from Qualys.

Check HTTPS Website rating

this domain is currently A rated, yay!!!

I have achieved this by making sure I am using more secure and strong cipher suites with the server that is running the site (disabling the less secure cipher suites on the server).  I have also disabled all protocols on my server other than TLS 1.2 (SSL3, TLS 1.x etc is not secure at all!!)

Using only TLS1.2 mitigates a few attacks like POODLE, Zombie and GOLDENDOODLE.

This makes the SSL much more compliant and secure. All website owners should check what cipher suites and protocols are enabled on their servers and get them changed for better security all round.

ssl rating 800x444 - SSL - Check your cypher suites and SSL rating

 

 

Leave a Reply

Your email address will not be published. Required fields are marked *