Equal-preference groups (https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration …) mean that it's not an all-or-nothing decision any more. Clients will often tell you whether they have AES hardware or not in their cipher order and it's useful to respect that.
-
-
-
Is that a BoringSSL-specific feature, or is it in OpenSSL as well?
- 2 more replies
New conversation -
-
-
Seems mistaken from trust perspective. Server has a secret & proof of its identity, nothing to gain from deceiving client to use bad cipher. Client is in opposite position, no?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
"That doesn't describe today's world". True for some, not for all.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.