What is the difference between Strong, Weak, and Deprecated ratings?

Strong ciphers use authenticated encryption (AES-GCM or ChaCha20-Poly1305) with forward secrecy via ECDHE or DHE key exchange, and are safe for all deployments. Weak ciphers have exploitable characteristics — CBC mode vulnerabilities, lack of forward secrecy, or deprecated MAC algorithms — but are not actively broken, making them acceptable only for supporting legacy clients. Deprecated ciphers are cryptographically broken or prohibited by standards (RC4 by RFC 7465, 3DES by SWEET32, EXPORT suites by FREAK/Logjam) and must be disabled immediately.

What is forward secrecy and why does it matter?

Forward secrecy (also called perfect forward secrecy) means that the session encryption keys are generated fresh for each connection and are not derivable from the server long-term private key. Cipher suites using ECDHE or DHE key exchange provide forward secrecy. If an attacker records encrypted traffic today and later compromises the server private key, they still cannot decrypt recorded sessions. Cipher suites using RSA key exchange (e.g., TLS_RSA_WITH_AES_256_GCM_SHA384) do not have forward secrecy — the server private key alone is sufficient to decrypt any recorded session.

Why are TLS 1.3 cipher suites listed without a key exchange algorithm?

TLS 1.3 separates the key exchange mechanism from the cipher suite. All TLS 1.3 connections use ephemeral ECDHE or DHE by default — forward secrecy is mandatory. The cipher suite only specifies the symmetric encryption algorithm (AES-GCM, ChaCha20-Poly1305) and the hash function for key derivation. This is why TLS 1.3 cipher names like TLS_AES_256_GCM_SHA384 look simpler than TLS 1.2 names.

What is the SWEET32 attack on 3DES?

SWEET32 (CVE-2016-2183) exploits the 64-bit block size of Triple-DES (and Blowfish). After approximately 785 gigabytes of data are encrypted under the same key, birthday paradox mathematics guarantee a block collision with high probability. By injecting known plaintext and observing the ciphertext, an attacker on a long-lived HTTPS session (such as a persistent WebSocket or repeated AJAX calls) can recover session cookies or other secrets. NIST formally deprecated 3DES in 2017 (NIST SP 800-131A Rev 2) and it is prohibited in TLS by most modern security guidelines.

What is the difference between IANA cipher names and OpenSSL names?

The Internet Assigned Numbers Authority (IANA) maintains the official TLS cipher suite registry using names like TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384. OpenSSL uses a shorter shorthand like ECDHE-RSA-AES256-GCM-SHA384. Both refer to the same cipher suite. The tool recognizes common aliases in both formats. If you are configuring nginx, Apache, or HAProxy, you will usually need OpenSSL names. If you are reading RFC documentation or IANA standards, you will see the full IANA names.

Should I disable TLS 1.2 entirely and use only TLS 1.3?

TLS 1.3 is strongly preferred, but disabling TLS 1.2 entirely will break compatibility with a significant portion of clients — older browsers, IoT devices, enterprise software, and payment terminals often support only TLS 1.2. The recommended approach is to enable both TLS 1.3 and a restricted set of TLS 1.2 cipher suites (ECDHE + AES-GCM or ChaCha20 only), and disable TLS 1.0 and TLS 1.1 completely.

Is my cipher list sent to a server when I use this tool?

No. All analysis runs entirely in your browser using JavaScript. Your cipher names are never transmitted to any server. This makes the tool safe to use with internal or sensitive configuration data.

Loading tool...

How to Use TLS Cipher Suite Checker

How to Use the TLS Cipher Suite Checker

Step 1: Enter Cipher Suite Names

Paste one cipher suite name per line into the input box. The tool accepts both IANA standard names and OpenSSL shorthand names:

IANA format: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
OpenSSL format: ECDHE-RSA-AES256-GCM-SHA384

You can also click one of the example presets (Best Practices, Legacy Server, Broken Config) to see typical configurations.

Step 2: Review the Overall Rating

The tool grades your full cipher list:

Grade	Meaning
Excellent	All suites are strong — AEAD with forward secrecy
Good	Mix of strong and weak suites
Fair	Only weak suites, or unknown ciphers present
Critical	One or more deprecated/broken ciphers detected

Step 3: Check Per-Cipher Details

Each cipher suite shows:

Rating — Strong / Weak / Deprecated / Unknown
TLS 1.2 / TLS 1.3 support flags
Forward Secrecy — whether past sessions are protected if the server key is compromised
Key Exchange, Encryption, and MAC algorithm breakdown
Known issues — specific attacks or weaknesses (e.g., SWEET32, FREAK, BEAST)
Recommendation — what to do

Step 4: Copy the Report

Click Copy Report to get a plain-text summary of all ratings — useful for security audit documentation.

Rating Criteria

Strong

TLS 1.3 ciphers (AES-GCM, ChaCha20-Poly1305)
TLS 1.2 with ECDHE/DHE + AEAD (GCM or ChaCha20) — provides both forward secrecy and authenticated encryption

Weak

TLS 1.2 with CBC mode — vulnerable to BEAST and Lucky13 without server-side mitigations
TLS 1.2 with RSA key exchange — no forward secrecy; server private key compromise exposes all recorded sessions
SHA-1 MAC — deprecated for HMAC in TLS contexts

Deprecated

RC4 — banned by RFC 7465; Bar-Mitzvah and NOMORE attacks make it cryptographically broken
3DES — SWEET32 attack (CVE-2016-2183) exploits the 64-bit block size
DES — 56-bit key is bruteforceable within hours
NULL — no encryption; transmits data in plaintext
EXPORT — deliberately weakened key sizes, targeted by FREAK and Logjam
Anonymous (anon/ADH/AECDH) — no server authentication; trivially MITM-able
MD5 — broken for cryptographic integrity purposes

Tips

Always enable TLS 1.3 alongside TLS 1.2 for compatibility
Prioritize ECDHE over DHE — ECDHE is faster and equally secure
Remove any cipher that shows as Deprecated before your next deployment
Verify your live server with testssl.sh or SSL Labs for a full handshake audit

Frequently Asked Questions

Most Viewed Tools

🔐

TOTP Code Generator

2,929 views

Generate time-based one-time passwords from a TOTP secret key. Enter your base32 secret, choose a period and digit length, and get the current and next codes with a live countdown timer. Useful for testing and debugging 2FA integrations.

TLS Cipher Suite Checker

How to Use TLS Cipher Suite Checker

How to Use the TLS Cipher Suite Checker

Step 1: Enter Cipher Suite Names

Step 2: Review the Overall Rating

Step 3: Check Per-Cipher Details

Step 4: Copy the Report

Rating Criteria

Strong

Weak

Deprecated

Tips

Frequently Asked Questions

What is the difference between Strong, Weak, and Deprecated ratings?

What is forward secrecy and why does it matter?

Why are TLS 1.3 cipher suites listed without a key exchange algorithm?

What is the SWEET32 attack on 3DES?

What is the difference between IANA cipher names and OpenSSL names?

Should I disable TLS 1.2 entirely and use only TLS 1.3?

Is my cipher list sent to a server when I use this tool?

Most Viewed Tools

TOTP Code Generator

Secret and Credential Scanner

Password Entropy Calculator

Content Security Policy Generator

Screen Size Converter

API Key Hasher

SSH Key Generator

IP Allowlist Rule Generator

Related Privacy & Security Tools

API Key Hasher

PGP Key Generator

TOTP Code Generator

OAuth 2.0 Scope Builder

IP Allowlist Rule Generator

Password Entropy Calculator

Content Security Policy Generator

SSH Key Generator

Share Your Feedback