Uploaded image for project: 'Erlang/OTP'
  1. Erlang/OTP
  2. ERL-1145

rsa_suites should have higher priority than RC4

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: OTP-22.2.1
    • Fix Version/s: 23.0
    • Component/s: ssl
    • Labels:

      Description

      When using ssl:cipher_suites(all) or ssl:ciphers_suites(all, 'tlsv1.2') the rsa_suites are given the lowest priority, below insecure suites like RC4/DES, and the more niche SRP/PSK.

      https://github.com/erlang/otp/blob/OTP-22.2.1/lib/ssl/src/ssl_cipher.erl#L287

       

      While the AES-CBC ciphers are vulnerable to BEAST prior to TLS1.2, they are arguably better than RC4 on TLS1.2, and the AES-GCM ciphers definitely are (https://blog.cloudflare.com/killing-rc4-the-long-goodbye/). If there are no plans to move these "RSA" AES-GCM/CBC ciphers to to the default suites, they should at least be included at a higher priority in the all lists.

        Attachments

          Activity

            People

            Assignee:
            otp_team_ps Team PS
            Reporter:
            jwheare James Wheare
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: