Choosing the proper cipher suites and parameters in transport layer security (TLS) is essential and critical. It is helpful in maintaining the confidentiality and integrity of communications between a client and server systems. The Mozilla Operations Security (OpSec) team maintains a wiki entry with reference transport layer security configurations.
The Transport Layer Security (TLS) protocol is the standard for enabling two networked applications or devices to exchange information privately and robustly, without having to worry about data integrity. Within TLS, applications have their choice of cipher suites and configuration parameters, and these decisions can have a substantial impact on the security and reliability of your data. This article will provide an overview of TLS and the kinds of decisions you need to make when securing your content.
- Cipherli.st provides of strong TLS configurations for a variety of software products.
- The Mozilla Operations Security (OpSec) team maintains a wiki page with reference TLS configurations.
- Mozilla Observatory, SSL Labs, and Cipherscan can help you test a site to see how secure its TLS configuration is.
- The Mozilla TLS Configurator can help you generate configuration files for your server to secure your site.