1 comment

[ 0.22 ms ] story [ 10.4 ms ] thread
Some background:

In 2014, Mozilla disabled support for all TLS ciphersuites using the block cipher Camellia [1] after this blog post [2]. That blog post that discussed on HN at the time [3].

In light of the latest round of TLS attacks (SWEET32) [4], 3DES -- an old block cipher occasionally kept in use for compatibility with very old systems -- will likely be deprecated for good. This will leave mainstream browsers with exactly one block cipher (AES), and exactly one stream cipher (ChaCha20).

[1] https://bugzilla.mozilla.org/show_bug.cgi?id=1036765

[2] https://briansmith.org/browser-ciphersuites-01

[3] https://news.ycombinator.com/item?id=6348468

[4] https://news.ycombinator.com/item?id=12351739