Mark Straver

SSLLabs score for 3DES sites

Discussion created by Mark Straver on Oct 17, 2016
Latest reply on Oct 18, 2016 by Rob_T

As you all may be aware of, 3DES is weak/vulnerable because of its relatively small block size (see: SWEET32). However, the server check still happily gives sites that only offer 3DES an A or A- while the security issue with it is quite similar to the RC4 weakness. IMHO this should be treated accordingly in the scores given.