Chrome SSL Security Issue under Windows systems?

Posted by fraido on Stack Overflow See other posts from Stack Overflow or by fraido
Published on 2010-04-01T15:51:43Z Indexed on 2010/04/01 15:53 UTC
Read the original article Hit count: 254

Filed under:
|
|
|
|

The Fortify.net website allows you to check what SSL Encryption key is used by your browser.
I gave it a try with the browsers I've on my machine and these are the results

Fedora 9
Firefox 3.0.8 = AES cipher, 256-bit key
Chrome 4.0.249.30 = AES cipher, 256-bit key

Windows XP SP3
IE 6.0.2x = RC4 cipher, 128-bit key
Firefox = AES cipher, 256-bit key
Chrome 4.1.249.1042 (42199) = RC4 cipher, 128-bit key .... WHAT!!?!!

Chrome is using RC4 128-bit (as IE6 does) that is well known as been very weak!

Chrome under Unix works fine... I'm wondering how is this possible?
Do you have this issue or is there a way to change the default key to be AES 256bit?
I'm using Chrome as the main browser under Windows and I'm really considering to switch back to Firefox

© Stack Overflow or respective owner

Related posts about google-chrome

Related posts about security