Knowledge Base

A+

Cipher Suite: TLS_­CHACHA20_­POLY1305_­SHA256

Summary

code:
(0x13, 0x03)
IANA Name:
TLS_CHACHA20_POLY1305_SHA256

Check your host!

Type a URL to analyze a service

Get a prompt and clear overview of your security configuration. Right now!

Components

A+
Encryption Type
Name
ChaCha20
Security
The stream cipher[78][79] ChaCha20[181][182][183][184] is a variant of the algorithm Salsa20[111][112][113] is considered secure [316][317] and gives better performance for mobile devices.
Recommendations
Prefer stream cipher[78][79] ChaCha20[181][182][183][184] in case of mobile devices.
A+
Encryption Key Size
Name
128
Security
The symmetric key[193][194][195] withkey size[438] more than 128 bits as it is should be according to National Institute of Standards and Technology[428][429] so it is not vulnerable to preimage attack[215] and it cannreliably prove that message came from the stated sender (its authenticity) and has not been changed, so connection is not open for a man-in-the-middle attack[414].
Recommendations
Remove the cipher suite from the list of cipher suites supported by your server.
A+
Message Authentication Code
Name
POLY1305
Security
message authentication code[128][129][130][131] is a message authentication code based on universal hashing[301][302][303][304] which is considered secure. It provides authenticated encryption[563] which simultaneously assure the confidentiality[198][199][200] and authenticity[201][202][203] of data. Together with stream cipher[78][79] ChaCha20ChaCha20-Poly1305[211][212][213] gives better performance on mobile devices under the same conditions of security.
Recommendations
If your application or requirements specifically call for the use of a message authentication code[128][129][130][131] that does not provide authenticated encryption[563] prefer block cipher mode of operation[293][294][295][296][297] (eg: counter with CBC-MAC[266][267][268], Galois/Counter Mode[65][66][67][68] or message authentication code[128][129][130][131] (eg: Poly1305[289][290]) that proved authenticated encryption over the ones which does not provide it. In case of a hashed message authentication code[418][419][420][421][422][423][424] prefer message authentication code[128][129][130][131] based on Secure Hash Algorithm 2[71][72][73] over the ones based on Secure Hash Algorithm 1[204][205][206].