Prevent SSL SWEET32

Short block sizes makes the webserver vulnerable to hit the same hash for multiple inputs. By observing the data for a longer period of time, an attacker can recover secure HTTP cookies.

Security Assessment

Security_Assessment_ PreventSSLSWEET32

CVSS Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Vulnerability Information

Short block sizes makes the webserver vulnerable to hit the same hash for multiple inputs. By observing the data for a longer period of time, an attacker can recover secure HTTP cookies.

Guides

To prevent SWEET32, make sure that you only use cipher suites with large block sizes. Refer to Secure TLS Configuration for more information on how to configure good cipher suites.

For more information about Crashtest Security visit crashtest-security.com