Académique Documents
Professionnel Documents
Culture Documents
Written by
Samir Jha
Jha.Samir@yahoo.com
Please comments if anything missed. Continuous Improvement is Key to Network Security.
Qualys SSL-Labs rating (A+,A, A-,B,C)
According to Qualys SSL pulse reporting, over 40% web application sites have configurations that can be
considered good (A, B ratings) and 3% websites get A+ ratings. So our goal with the design of grading
criteria is to push the number of A+ sites up. Application delivery controller ( F5 ADC) has ability to fine
tune your application setting & achieve good ratings.
Methodology Overview
Our approach consists of four steps:
Note: To maintain your website A / A+ grade in the future, you have to change your supported cipher
suites once again, so that every DES based algorithm gets either completely removed (this may have a
compatibility impact) or at least gets placed at the very bottom of the Cipher Suite list.
SSL LAB Test
Qualys SSL-Labs rating (A+,A, A-,B,C)
https://www.ssllabs.com/ssltest/index.html