Move away from static Cipher Suite order check towards checking for usage of strong ciphers #589

TuemmlerKelch · 2024-05-14T12:39:44Z

Description

As cipher suite order is highly individual, it is more important to make sure there are no weak or insecure ciphers configured.
This affects both SBD-072 and Risk Score Setting 4.1

What are the benefits?

Fair assessment

Acceptance Criteria!

A cipher suite order following all of the necessary criteria (Correct registry path and type) AND not containing weak or insecure ciphers will be considered passed

Linked Issues?

No response

Additional Information!

No response

TuemmlerKelch added the enhancement New feature or request label May 14, 2024

TuemmlerKelch added this to the 5.10 milestone May 14, 2024

TuemmlerKelch assigned SteffenWinternheimer May 14, 2024

TuemmlerKelch added the patch Includes bug fixes, focusing on enhancing stability. label May 16, 2024

SteffenWinternheimer mentioned this issue May 27, 2024

Update CipherSuite order check for RistScore 4.1 and SBD-072 #596

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Move away from static Cipher Suite order check towards checking for usage of strong ciphers #589

Move away from static Cipher Suite order check towards checking for usage of strong ciphers #589

TuemmlerKelch commented May 14, 2024

Move away from static Cipher Suite order check towards checking for usage of strong ciphers #589

Move away from static Cipher Suite order check towards checking for usage of strong ciphers #589

Comments

TuemmlerKelch commented May 14, 2024

Description

What are the benefits?

Acceptance Criteria!

Linked Issues?

Additional Information!