Knowledge Base

Cipher Suite

A

TLS_­CHACHA20_­POLY1305_­SHA256

Summary

Name:
TLS_CHACHA20_POLY1305_SHA256
IANA Name:
TLS_CHACHA20_POLY1305_SHA256
Code:
(0x13, 0x03)
OpenSSL Name:
TLS_CHACHA20_POLY1305_SHA256
Protocol Versions:
TLS 1.3

Check your host!

Type a URL to analyze a service

Get a prompt and clear overview of your security configuration. Right now!

Components

A+
Encryption Type
Name

ChaCha20

Security

The stream cipher[182][183] ChaCha20[324][325][326][327] is a variant of the algorithm Salsa20[380][381][382] is considered secure [331][332] and gives better performance for mobile devices.

Recommendations

Prefer stream cipher[182][183] ChaCha20[324][325][326][327] in case of mobile devices.

A+
Encryption Key Size
Name

128

Security

The symmetric key[185][186][187] withkey size[184] more than 128 bits as it is should be according to National Institute of Standards and Technology[470][471] so it is not vulnerable to preimage attack[67] and it cannreliably prove that message came from the stated sender (its authenticity) and has not been changed, so connection is not open for a man-in-the-middle attack[61].

Recommendations

Remove the cipher suite from the list of cipher suites supported by your server.