SSL/TLS Forward Secrecy Cipher Suites Not Supported
Medium Web Application Scanning Plugin ID 98617
SynopsisSSL/TLS Forward Secrecy Cipher Suites Not Supported
DescriptionThe remote server does not offer SSL/TLS cipher suites that support forward secrecy (FS) also known as perfect forward secrecy (PFS). It's a feature that provides assurances the session keys will not be compromised even if server's private key is compromised.
SolutionReconfigure the affected server to enable cipher suites providing forward secrecy (ECDHE or DHE based cipher suites).