Ask Your Question

Revision history [back]

Difference in used cipher suites

Hi guys,

I’ve been wondering how applications determine which cipher suites they offer to the server. In particular I would like to know if there is a difference between Microsoft Edge browser and Java JRE because it looks like both offer a different set of cipher suites as a client. In my trace it looks like Edge is sending 43 cipher suites (one of them is matched by the server) whereas Java JRE only sends a set of 12 and being denied because there is no match with any of the cipher suites that the server supports.

So why this difference (IT doesn’t seem to have limited anything on the JRE side configuration) and how can I make Java JRE offer the correct (TLS1.2) cipher suites that my server will support?

I’d be happy to provide detailed information if that’s required.