...
There are altogether 5 protocols available for SSL and TLS combined.
| Protocol | Status |
|---|---|
| TLS v1.2 | Recommended. They support the latest cryptographic algorithms |
| TLS v1.1 | Ok to use as long as the backward compatibility has been turned off. |
| TLS v1.0 | Insecure do not use |
| SSL v2 | Insecure do not use |
| SSL v1 | Insecure do not use |
Cipher Suites
For the encryption and decryption to happen in a secure way we have to define what cipher suite we want to cover. The strength of the TLS is directly dependent on the cipher suite that we decide to use. The servers should be configured to disable all week ciphers. The cheat sheet for ciphers can be found in https://www.owasp.org/index.php/TLS_Cipher_String_Cheat_Sheet
...