Security
| Encryption Ciphers | Weak | Weak encryption ciphers are supported. These are deprecated, and their removal will offer increased security. | |
|---|---|---|---|
| Public Key Size | 1024 bits | Key sizes 1024 bits or larger are considered secure. Be aware that unnecessarily large key sizes will slow down the connection establishment. | |
| Secure Renegotiation | Yes | ||
| Protocols | Insecure | Server supports SSLv2. This is a deprecated and insecure protocol which should be disabled. |
Performance
| HTTP Keepalive | No | Enabling HTTP Keep-Alive will allow subsequent requests to be served faster, without the need to establish a new SSL/TLS connection. | |
|---|---|---|---|
| SSL Session Cache | Yes | ||
| TLS Stateless Resume | No | TLS stateless resume allows for faster re-connections to TLS enabled servers, without needing session state to be stored on the server. | |
| SSL Handshake Size | 4821 bytes | The amount of data exchanged to establish a session with this server is large. This will result in a slower initial connection. Using a certificate with fewer intermediate chains and / or a smaller public key size can reduce the amount of data. |
Encryption Ciphers (TLS/SSLv3)
| Cipher | Strength | Algo | Key | KeyEx | Handshake | ||
|---|---|---|---|---|---|---|---|
| EXP-RC4-MD5 | Export | RC4 | 40-bit | RSA | 116ms | 4783 bytes | |
| EXP-RC2-CBC-MD5 | Export | RC2 | 40-bit | RSA | 116ms | 4799 bytes | |
| EXP-DES-CBC-SHA | Export | DES | 40-bit | RSA | 114ms | 4799 bytes | |
| DES-CBC-SHA | Low | DES | 56-bit | RSA | 112ms | 4653 bytes | |
| RC4-MD5 | Medium | RC4 | 128-bit | RSA | 116ms | 4637 bytes | |
| RC4-SHA | Medium | RC4 | 128-bit | RSA | 110ms | 4645 bytes | |
| IDEA-CBC-SHA | Medium | IDEA | 128-bit | RSA | 121ms | 4653 bytes | |
| AES128-SHA | High | AES | 128-bit | RSA | 115ms | 4669 bytes | |
| DES-CBC3-SHA | High | 3DES | 168-bit | RSA | 115ms | 4653 bytes | |
| AES256-SHA | High | AES | 256-bit | RSA | 119ms | 4669 bytes | |