暗号スイート一覧
TLS 1.2/1.3暗号スイートの一覧と安全性の推奨度。ECDHE・AES-GCM・ChaCha20等のアルゴリズム構成を確認でき、サーバーのTLS設定最適化やセキュリティ監査に活用できます
関連カテゴリ:SSL/TLSセキュリティ
プロトコルバージョン
セキュリティ評価
32 件
| 暗号スイート名 | プロトコル | 鍵交換 | 認証 | 暗号化 | MAC | 評価 |
|---|---|---|---|---|---|---|
TLS_AES_256_GCM_SHA384 | TLS 1.3 | Any (ECDHE/DHE) | Any | AES-256-GCM | SHA-384 | 推奨 |
TLS_AES_128_GCM_SHA256 | TLS 1.3 | Any (ECDHE/DHE) | Any | AES-128-GCM | SHA-256 | 推奨 |
TLS_CHACHA20_POLY1305_SHA256 | TLS 1.3 | Any (ECDHE/DHE) | Any | ChaCha20-Poly1305 | SHA-256 | 推奨 |
TLS_AES_128_CCM_SHA256 | TLS 1.3 | Any (ECDHE/DHE) | Any | AES-128-CCM | SHA-256 | 推奨 |
TLS_AES_128_CCM_8_SHA256 | TLS 1.3 | Any (ECDHE/DHE) | Any | AES-128-CCM-8 | SHA-256 | 推奨 |
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 | TLS 1.2 | ECDHE | ECDSA | AES-256-GCM | SHA-384 | 推奨 |
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 | TLS 1.2 | ECDHE | ECDSA | AES-128-GCM | SHA-256 | 推奨 |
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 | TLS 1.2 | ECDHE | RSA | AES-256-GCM | SHA-384 | 推奨 |
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 | TLS 1.2 | ECDHE | RSA | AES-128-GCM | SHA-256 | 推奨 |
TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 | TLS 1.2 | ECDHE | ECDSA | ChaCha20-Poly1305 | SHA-256 | 推奨 |
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 | TLS 1.2 | ECDHE | RSA | ChaCha20-Poly1305 | SHA-256 | 推奨 |
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 | TLS 1.2 | DHE | RSA | AES-256-GCM | SHA-384 | 推奨 |
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 | TLS 1.2 | DHE | RSA | AES-128-GCM | SHA-256 | 推奨 |
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 | TLS 1.2 | ECDHE | ECDSA | AES-256-CBC | SHA-384 | 許容 |
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 | TLS 1.2 | ECDHE | RSA | AES-256-CBC | SHA-384 | 許容 |
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | TLS 1.2 | ECDHE | ECDSA | AES-128-CBC | SHA-256 | 許容 |
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | TLS 1.2 | ECDHE | RSA | AES-128-CBC | SHA-256 | 許容 |
TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 | TLS 1.2 | DHE | RSA | AES-256-CBC | SHA-256 | 許容 |
TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 | TLS 1.2 | DHE | RSA | AES-128-CBC | SHA-256 | 許容 |
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA | TLS 1.2 | ECDHE | RSA | AES-256-CBC | SHA-1 | 脆弱 |
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA | TLS 1.2 | ECDHE | RSA | AES-128-CBC | SHA-1 | 脆弱 |
TLS_RSA_WITH_AES_256_GCM_SHA384 | TLS 1.2 | RSA | RSA | AES-256-GCM | SHA-384 | 脆弱 |
TLS_RSA_WITH_AES_128_GCM_SHA256 | TLS 1.2 | RSA | RSA | AES-128-GCM | SHA-256 | 脆弱 |
TLS_RSA_WITH_AES_256_CBC_SHA256 | TLS 1.2 | RSA | RSA | AES-256-CBC | SHA-256 | 脆弱 |
TLS_RSA_WITH_AES_128_CBC_SHA256 | TLS 1.2 | RSA | RSA | AES-128-CBC | SHA-256 | 脆弱 |
TLS_RSA_WITH_AES_256_CBC_SHA | TLS 1.2 | RSA | RSA | AES-256-CBC | SHA-1 | 脆弱 |
TLS_RSA_WITH_AES_128_CBC_SHA | TLS 1.2 | RSA | RSA | AES-128-CBC | SHA-1 | 脆弱 |
TLS_RSA_WITH_3DES_EDE_CBC_SHA | TLS 1.2 | RSA | RSA | 3DES-EDE-CBC | SHA-1 | 非安全 |
TLS_RSA_WITH_RC4_128_SHA | TLS 1.2 | RSA | RSA | RC4-128 | SHA-1 | 非安全 |
TLS_RSA_WITH_RC4_128_MD5 | TLS 1.2 | RSA | RSA | RC4-128 | MD5 | 非安全 |
TLS_RSA_WITH_NULL_SHA256 | TLS 1.2 | RSA | RSA | NULL | SHA-256 | 非安全 |
TLS_RSA_WITH_NULL_SHA | TLS 1.2 | RSA | RSA | NULL | SHA-1 | 非安全 |