/
Cipher Suites

Cipher Suites

Owned by Jase T. English
Last updated: Apr 05, 2022
1 min read

The Open Web Application Security Project® (OWASP) references Mozilla standards for its guidance on the the current cipher suites considered to be secure.



CUIT recommends that web server configurations be kept up-to-date with OWASP & Mozilla standards to best protect University applications.  These cipher suites are available in a running document that can be found here:

https://ssl-config.mozilla.org/guidelines/latest.json

  • Note, the ciphers defined in the .json file above are considered up-to-date

TLS1.3:  [configurations][modern][ciphersuites]

TLS1.2:  [configurations][intermediate][ciphersuites]

  • If your web application needs the ciphers listed in a specific format, this information is specified in the document as well:

IANA:  [configurations][intermediate][ciphersuites][iana]

OPENSSL:  [configurations][intermediate][ciphers][openssl]

  • Ciphers in the following section SHOULD NOT BE USED (unless there is a legitimate business reason, which should be approved):

[configurations][old]



If you need assistance determining how to implement the correct acceptable ciphers, please reach out to cybersec@columbia.edu.

Related content

Encryption Security
Encryption Security
CUIT CyberSecurity
More like this
TLS IIS Weak Chiphers – Windows Server 2008r2-2016
TLS IIS Weak Chiphers – Windows Server 2008r2-2016
CUIT CyberSecurity
More like this
Windows Web Servers Should be Configured to Use Secure Communication Protocols
Windows Web Servers Should be Configured to Use Secure Communication Protocols
CUIT CyberSecurity
More like this
IoT Devices - TLS Cipher Suite Upgrade Needed
IoT Devices - TLS Cipher Suite Upgrade Needed
CUIT CyberSecurity
More like this