Default TLS encryption algorithms for ESA cipher suite groups-Edge Security Acceleration(ESA)-阿里云帮助中心

Docs ICP Filing Console

In Edge Security Acceleration (ESA), the All Cipher Suites (Default) and Enhanced Cipher Suite groups support different algorithms.

All cipher suites (default)

Suite name	Minimum supported protocol
AES128-SHA	TLS 1.0
AES128-GCM-SHA256	TLS 1.2
AES256-SHA	TLS 1.0
AES256-GCM-SHA384	TLS 1.2
ECDHE-ECDSA-AES128-GCM-SHA256	TLS 1.2
ECDHE-ECDSA-AES128-SHA	TLS 1.0
ECDHE-ECDSA-AES256-GCM-SHA384	TLS 1.2
ECDHE-ECDSA-AES256-SHA	TLS 1.0
ECDHE-ECDSA-CHACHA20-POLY1305	TLS 1.2
ECDHE-RSA-AES128-SHA	TLS 1.0
ECDHE-RSA-AES256-SHA	TLS 1.0
ECDHE-RSA-AES128-GCM-SHA256	TLS 1.2
ECDHE-RSA-AES256-GCM-SHA384	TLS 1.2
ECDHE-RSA-CHACHA20-POLY1305	TLS 1.2
TLS_AES_128_GCM_SHA256	TLS 1.3
TLS_AES_256_GCM_SHA384	TLS 1.3
TLS_CHACHA20_POLY1305_SHA256	TLS 1.3

Encryption algorithms supported by the enhanced cipher suite

ECDHE-ECDSA-AES128-GCM-SHA256
ECDHE-ECDSA-AES256-GCM-SHA384
ECDHE-ECDSA-CHACHA20-POLY1305
ECDHE-RSA-AES128-GCM-SHA256
ECDHE-RSA-AES256-GCM-SHA384
ECDHE-RSA-CHACHA20-POLY1305
TLS_AES_128_GCM_SHA256
TLS_AES_256_GCM_SHA384
TLS_CHACHA20_POLY1305_SHA256

Previous：Certificate formatsNext：Domain control validation

该文章对您有帮助吗？