Harden the TLS configuration
Please consider doing the following:
• Add support for TLS 1.3
• Drop support for weak cipher suites that are used for TLS 1.2
• Drop support for TLS 1.1
For more information, see the results of the Qualys SSL Server Test:
https://www.ssllabs.com/ssltest/analyze.html?d=box.com
1
vote
Kenneth Barber
shared this idea
-
Kenneth Barber commented
The first and last points have been addressed but not the 2nd point.