05-21-2020, 12:38 AM
One of my web apps is being PCI certified.
1. How do I restrict ciphers from being used?
For example, I want to disallow ciphers
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
.. and others
2. I have an auditor querying if we can prevent ECDH public server param reuse
Is this possible and if so how.
TIA
1. How do I restrict ciphers from being used?
For example, I want to disallow ciphers
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
.. and others
2. I have an auditor querying if we can prevent ECDH public server param reuse
Is this possible and if so how.
TIA