Jump to: navigation, search

Security/Server Side TLS

540 bytes added, 15:14, 13 February 2016
link to json
* SHA1 certificates are authorized but only via certificate switching, meaning the server must implement custom logic to provide a SHA1 certs to old clients, and SHA256 certs to all others. More information in the "Certificates Switching" section later in this document.
* Most ciphers that are not clearly broken and dangerous to use are supported
= JSON version of the recommendations =
You can find the recommendations above in JSON format at the address [].
This location is permanent and can be referenced in scripts and tools. The file is versioned and will not change, to avoid breaking tools when we update the recommendations.
New versions will have their own URLs and will be referenced on this page.
== Previous versions ==
* None
= Mandatory discards =

Navigation menu