Home/ Glossary/ Cipher Suite

Cipher Suite (Cipher Suite)

Security Glossary - SSL/TLS

Definition: A cipher suite is a set of cryptographic algorithms used together to secure a TLS connection. It specifies the key exchange algorithm (how to share a secret), the authentication algorithm (how to verify identities), the bulk encryption algorithm (how to encrypt data), and the message authentication code (how to verify data integrity).

The Importance of Cipher Suite

The cipher suite your server negotiates directly determines the security of every HTTPS connection. A weak cipher suite can make an otherwise properly configured TLS connection vulnerable. For example, cipher suites using RC4 can be broken, those using CBC mode in TLS 1.0 are vulnerable to BEAST, and those without forward secrecy expose past sessions if the key is compromised.

Server configuration controls which cipher suites are offered and in what order. The server should prefer the strongest suites (ECDHE key exchange, AES-256-GCM or ChaCha20-Poly1305 encryption) and disable known-weak ones (RC4, 3DES, DES, NULL, EXPORT-grade). The cipher suite order matters - clients may select a weak suite if the server offers it first.

TLS 1.3 drastically simplified this by only allowing five cipher suites, all of which are strong AEAD ciphers with forward secrecy. This "secure by default" approach means TLS 1.3 cannot be misconfigured with weak ciphers. TLS 1.2 requires more careful configuration because it supports both strong and weak suites.

Key Parameters

Cipher Suite ComponentRecommendedAvoid
Key ExchangeECDHERSA (no forward secrecy)
AuthenticationECDSA or RSADSA
Bulk EncryptionAES-128-GCM, AES-256-GCM, ChaCha20-Poly1305RC4, 3DES, DES, CBC mode
Hash/MACSHA-256, SHA-384MD5, SHA-1

Testing Your Configuration

An SSL checker lists all cipher suites your server offers, often color-coded by strength. Weak or deprecated suites are flagged. Verify that all offered suites use AEAD encryption (GCM or ChaCha20) and ECDHE key exchange for forward secrecy.

Check SSL Certificate

Cipher Suite FAQ

Which cipher suites should I enable?
For TLS 1.2: enable ECDHE-ECDSA-AES256-GCM-SHA384, ECDHE-RSA-AES256-GCM-SHA384, ECDHE-ECDSA-CHACHA20-POLY1305, and their AES128 equivalents. For TLS 1.3: all five allowed suites are strong and should be enabled. Disable everything else.
What does the cipher suite name mean?
A name like TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 means: ECDHE key exchange, RSA authentication, AES-256 in GCM mode for encryption, and SHA-384 for message authentication. In TLS 1.3, names are simpler because key exchange and authentication are negotiated separately.

Related Concepts

Transport Layer Security Perfect Forward Secrecy SSL/TLS Handshake TLS 1.3 TLS 1.2
Disclaimer: DomainOptic provides automated informational scans only. Results do not constitute professional security advice, compliance certification, or a guarantee of security. Always verify findings independently.