[openssl-users] Which protocols should my client support?

Salz, Rich rsalz at akamai.com
Mon Apr 24 20:04:45 UTC 2017

> My client is a custom application and as such only needs to communicate with specific servers for specific purposes.  I think it makes sense for my client to only support the specific protocol that my server will use, ECDHE-RSA-AES128-GCM-SHA256.  Does this sound reasonable or should I also include others as well?

I would suggest you include the three main ciphers defined in TLS 1.3, as that represents the IETF's best thinking for now.  AESGCM 128, 256 and ChaCha-poly.

More information about the openssl-users mailing list