cipher usage

March 2016 scan results

Haven’t had much time to process the results, at the same time, not much has changed (just continuation of established trends).

SSL/TLS survey of 551637 websites from Alexa's top 1 million
Stats only from connections that did provide valid certificates
(or anonymous DH from servers that do also have valid certificate installed)


Supported Ciphers         Count     Percent
-------------------------+---------+-------
3DES                      484308    87.7947
3DES Only                 592       0.1073
3DES Preferred            1803      0.3268
3DES forced in TLS1.1+    945       0.1713
AES                       546565    99.0806
AES Only                  43629     7.909
AES-CBC                   546039    98.9852
AES-CBC Only              8757      1.5875
AES-GCM                   442034    80.1313
AES-GCM Only              490       0.0888
CAMELLIA                  235037    42.6072
CAMELLIA Only             3         0.0005
CHACHA20                  74906     13.5789
CHACHA20 Only             1         0.0002
Insecure                  53675     9.7301
RC4                       165105    29.93
RC4 Only                  189       0.0343
RC4 Preferred             16635     3.0156
RC4 forced in TLS1.1+     8955      1.6234
x:FF 29 3DES Only         637       0.1155
x:FF 29 3DES Preferred    2172      0.3937
x:FF 29 RC4 Only          263       0.0477
x:FF 29 RC4 Preferred     18392     3.3341
x:FF 29 incompatible      389       0.0705
x:FF 35 3DES Only         644       0.1167
x:FF 35 3DES Preferred    2079      0.3769
x:FF 35 RC4 Only          313       0.0567
x:FF 35 RC4 Preferred     18423     3.3397
x:FF 35 incompatible      393       0.0712
x:FF 44 3DES Only         4780      0.8665
x:FF 44 3DES Preferred    8693      1.5759
x:FF 44 incompatible      706       0.128
y:DHE-RSA-SEED-SHA        69733     12.6411
y:IDEA-CBC-SHA            66812     12.1116
y:SEED-SHA                80215     14.5413
z:ADH-AES128-GCM-SHA256   415       0.0752
z:ADH-AES128-SHA          692       0.1254
z:ADH-AES128-SHA256       283       0.0513
z:ADH-AES256-GCM-SHA384   428       0.0776
z:ADH-AES256-SHA          704       0.1276
z:ADH-AES256-SHA256       283       0.0513
z:ADH-CAMELLIA128-SHA     365       0.0662
z:ADH-CAMELLIA256-SHA     368       0.0667
z:ADH-DES-CBC-SHA         279       0.0506
z:ADH-DES-CBC3-SHA        707       0.1282
z:ADH-RC4-MD5             522       0.0946
z:ADH-SEED-SHA            294       0.0533
z:AECDH-AES128-SHA        8357      1.5149
z:AECDH-AES256-SHA        8387      1.5204
z:AECDH-DES-CBC3-SHA      8323      1.5088
z:AECDH-NULL-SHA          56        0.0102
z:AECDH-RC4-SHA           7767      1.408
z:DES-CBC-MD5             7631      1.3833
z:DES-CBC-SHA             34001     6.1637
z:DES-CBC3-MD5            18130     3.2866
z:ECDHE-RSA-NULL-SHA      63        0.0114
z:EDH-RSA-DES-CBC-SHA     28894     5.2379
z:EXP-ADH-DES-CBC-SHA     182       0.033
z:EXP-ADH-RC4-MD5         181       0.0328
z:EXP-DES-CBC-SHA         11397     2.066
z:EXP-EDH-RSA-DES-CBC-SHA 8988      1.6293
z:EXP-RC2-CBC-MD5         13770     2.4962
z:EXP-RC4-MD5             14407     2.6117
z:EXP1024-DES-CBC-SHA     3787      0.6865
z:EXP1024-RC4-SHA         3834      0.695
z:IDEA-CBC-MD5            1577      0.2859
z:NULL-MD5                182       0.033
z:NULL-SHA                189       0.0343
z:NULL-SHA256             43        0.0078
z:RC2-CBC-MD5             7791      1.4123
z:RC4-64-MD5              776       0.1407

Cipher ordering           Count     Percent
-------------------------+---------+-------
Client side               133547    24.2092
Server side               418090    75.7908

Supported Handshakes      Count     Percent
-------------------------+---------+-------
ADH                       857       0.1554
AECDH                     8405      1.5236
DHE                       295868    53.6345
ECDH                      2         0.0004
ECDHE                     469045    85.0278
ECDHE and DHE             247197    44.8115
RSA                       474406    85.9997

Supported PFS             Count     Percent  PFS Percent
-------------------------+---------+--------+-----------
DH,1024bits               118316    21.4482  39.9895
DH,1536bits               1         0.0002   0.0003
DH,2048bits               166870    30.25    56.4002
DH,2236bits               65        0.0118   0.022
DH,2432bits               3         0.0005   0.001
DH,3072bits               115       0.0208   0.0389
DH,3092bits               1         0.0002   0.0003
DH,4046bits               1         0.0002   0.0003
DH,4094bits               1         0.0002   0.0003
DH,4096bits               10250     1.8581   3.4644
DH,512bits                57        0.0103   0.0193
DH,768bits                352       0.0638   0.119
DH,8192bits               10        0.0018   0.0034
ECDH,B-571,570bits        2139      0.3878   0.456
ECDH,K-163,163bits        1         0.0002   0.0002
ECDH,P-192,192bits        20        0.0036   0.0043
ECDH,P-224,224bits        90        0.0163   0.0192
ECDH,P-256,256bits        450911    81.7405  96.1338
ECDH,P-384,384bits        5288      0.9586   1.1274
ECDH,P-521,521bits        12472     2.2609   2.659
Prefer DH,1024bits        46513     8.4318   15.7209
Prefer DH,1536bits        1         0.0002   0.0003
Prefer DH,2048bits        5993      1.0864   2.0256
Prefer DH,3072bits        10        0.0018   0.0034
Prefer DH,4096bits        386       0.07     0.1305
Prefer DH,768bits         37        0.0067   0.0125
Prefer ECDH,B-571,570bits 1925      0.349    0.4104
Prefer ECDH,K-163,163bits 1         0.0002   0.0002
Prefer ECDH,P-224,224bits 87        0.0158   0.0185
Prefer ECDH,P-256,256bits 414883    75.2094  88.4527
Prefer ECDH,P-384,384bits 3903      0.7075   0.8321
Prefer ECDH,P-521,521bits 11412     2.0688   2.433
Prefer PFS                485151    87.9475  0
Support PFS               517716    93.8508  0

Supported ECC curves      Count     Percent 
-------------------------+---------+--------
brainpoolP256r1           7010      1.2708   
brainpoolP384r1           7016      1.2719   
brainpoolP512r1           7016      1.2719   
prime192v1                1542      0.2795   
prime192v1 Only           1         0.0002   
prime256v1                465478    84.3812  
prime256v1 Only           399795    72.4743  
secp160k1                 1479      0.2681   
secp160r1                 1485      0.2692   
secp160r2                 1478      0.2679   
secp192k1                 1492      0.2705   
secp224k1                 1571      0.2848   
secp224r1                 4963      0.8997   
secp256k1                 8958      1.6239   
secp384r1                 66416     12.0398  
secp384r1 Only            776       0.1407   
secp521r1                 33828     6.1323   
secp521r1 Only            143       0.0259   
sect163k1                 1480      0.2683   
sect163k1 Only            2         0.0004   
sect163r1                 1478      0.2679   
sect163r2                 1478      0.2679   
sect193r1                 1478      0.2679   
sect193r2                 1478      0.2679   
sect233k1                 1563      0.2833   
sect233r1                 1563      0.2833   
sect239k1                 1563      0.2833   
sect283k1                 8428      1.5278   
sect283r1                 8425      1.5273   
sect409k1                 8431      1.5284   
sect409r1                 8429      1.528    
sect571k1                 8434      1.5289   
sect571r1                 8434      1.5289   

Unsupported curve fallback     Count     Percent 
------------------------------+---------+--------
False                          48103     8.72     
True                           357854    64.8713  
order-specific                 74        0.0134   
unknown                        145606    26.3953  

ECC curve ordering        Count     Percent 
-------------------------+---------+--------
client                    8089      1.4664   
inconclusive-noecc        7         0.0013   
server                    458334    83.0862  
unknown                   85207     15.4462  

TLSv1.2 PFS supported sigalgs  Count     Percent 
------------------------------+---------+--------
ECDSA-SHA1                     48616     8.813    
ECDSA-SHA1 Only                5         0.0009   
ECDSA-SHA224                   48602     8.8105   
ECDSA-SHA256                   64365     11.668   
ECDSA-SHA384                   64360     11.6671  
ECDSA-SHA512                   64365     11.668   
ECDSA-SHA512 Only              6         0.0011   
RSA-MD5                        46119     8.3604   
RSA-SHA1                       404339    73.298   
RSA-SHA1 Only                  37023     6.7115   
RSA-SHA224                     339349    61.5167  
RSA-SHA256                     375560    68.081   
RSA-SHA256 Only                7280      1.3197   
RSA-SHA384                     341601    61.925   
RSA-SHA384 Only                3         0.0005   
RSA-SHA512                     341567    61.9188  
RSA-SHA512 Only                84        0.0152   

TLSv1.2 PFS ordering           Count     Percent 
------------------------------+---------+--------
client                         252624    45.7953  
indeterminate                  57        0.0103   
intolerant                     5553      1.0066   
order-fallback                 7         0.0013   
server                         199982    36.2525  
unsupported                    18801     3.4082   

TLSv1.2 PFS sigalg fallback    Count     Percent 
------------------------------+---------+--------
ECDSA SHA1                     48595     8.8092   
ECDSA intolerant               74        0.0134   
ECDSA pfs-rsa-SHA512           15721     2.8499   
RSA False                      45736     8.291    
RSA SHA1                       328060    59.4703  
RSA intolerant                 39590     7.1768   
RSA pfs-ecdsa-SHA512           1         0.0002   
RSA soft-nopfs                 500       0.0906   

Renegotiation             Count     Percent 
-------------------------+---------+--------
False                     5768      1.0456   
insecure                  16732     3.0332   
secure                    529137    95.9212  

Compression               Count     Percent 
-------------------------+---------+--------
1 (zlib compression)      7977      1.4461   
False                     5768      1.0456   
NONE                      537892    97.5083  

TLS session ticket hint   Count     Percent 
-------------------------+---------+--------
1                         4         0.0007   
1 only                    4         0.0007   
2                         2         0.0004   
2 only                    2         0.0004   
5                         3         0.0005   
5 only                    3         0.0005   
10                        6         0.0011   
10 only                   6         0.0011   
15                        5         0.0009   
15 only                   5         0.0009   
30                        18        0.0033   
30 only                   17        0.0031   
60                        170       0.0308   
60 only                   166       0.0301   
65                        1         0.0002   
65 only                   1         0.0002   
70                        6         0.0011   
75                        1         0.0002   
75 only                   1         0.0002   
100                       13        0.0024   
100 only                  13        0.0024   
120                       23        0.0042   
120 only                  23        0.0042   
128                       2         0.0004   
128 only                  2         0.0004   
150                       2         0.0004   
180                       72        0.0131   
180 only                  70        0.0127   
240                       14        0.0025   
240 only                  14        0.0025   
244                       1         0.0002   
244 only                  1         0.0002   
300                       268504    48.674   
300 only                  264860    48.0135  
302                       3         0.0005   
302 only                  3         0.0005   
360                       2         0.0004   
360 only                  1         0.0002   
400                       5         0.0009   
400 only                  5         0.0009   
420                       124       0.0225   
420 only                  105       0.019    
450                       1         0.0002   
450 only                  1         0.0002   
480                       10        0.0018   
480 only                  10        0.0018   
500                       4         0.0007   
500 only                  4         0.0007   
540                       3         0.0005   
540 only                  3         0.0005   
600                       27697     5.0209   
600 only                  27547     4.9937   
660                       3         0.0005   
660 only                  3         0.0005   
720                       1         0.0002   
720 only                  1         0.0002   
840                       1         0.0002   
840 only                  1         0.0002   
900                       1254      0.2273   
900 only                  1233      0.2235   
960                       2         0.0004   
960 only                  2         0.0004   
1000                      1         0.0002   
1000 only                 1         0.0002   
1200                      3011      0.5458   
1200 only                 3007      0.5451   
1210                      1         0.0002   
1210 only                 1         0.0002   
1300                      1         0.0002   
1300 only                 1         0.0002   
1320                      1         0.0002   
1320 only                 1         0.0002   
1380                      1         0.0002   
1380 only                 1         0.0002   
1500                      5         0.0009   
1500 only                 4         0.0007   
1800                      570       0.1033   
1800 only                 559       0.1013   
1980                      2         0.0004   
1980 only                 2         0.0004   
2100                      2         0.0004   
2100 only                 1         0.0002   
2400                      8         0.0015   
2400 only                 8         0.0015   
2700                      9         0.0016   
2700 only                 9         0.0016   
3000                      28        0.0051   
3000 only                 28        0.0051   
3600                      802       0.1454   
3600 only                 792       0.1436   
3900                      1         0.0002   
3900 only                 1         0.0002   
5160                      1         0.0002   
5160 only                 1         0.0002   
5400                      15        0.0027   
5400 only                 8         0.0015   
6000                      288       0.0522   
6000 only                 287       0.052    
7200                      16170     2.9313   
7200 only                 16152     2.928    
10800                     3928      0.7121   
10800 only                3918      0.7102   
14400                     85        0.0154   
14400 only                84        0.0152   
18000                     9         0.0016   
18000 only                9         0.0016   
21600                     4289      0.7775   
21600 only                4289      0.7775   
25200                     1         0.0002   
25200 only                1         0.0002   
28800                     3301      0.5984   
28800 only                3301      0.5984   
36000                     1118      0.2027   
36000 only                1107      0.2007   
43200                     46        0.0083   
43200 only                46        0.0083   
60000                     2         0.0004   
60000 only                2         0.0004   
64800                     63048     11.4293  
64800 only                63047     11.4291  
72000                     8         0.0015   
72000 only                8         0.0015   
79200                     1         0.0002   
79200 only                1         0.0002   
84000                     1         0.0002   
84000 only                1         0.0002   
86000                     51        0.0092   
86000 only                51        0.0092   
86400                     2862      0.5188   
86400 only                2858      0.5181   
100800                    10169     1.8434   
100800 only               10144     1.8389   
108000                    1         0.0002   
108000 only               1         0.0002   
115200                    1         0.0002   
115200 only               1         0.0002   
129600                    8         0.0015   
129600 only               8         0.0015   
172800                    9         0.0016   
172800 only               9         0.0016   
216000                    5         0.0009   
216000 only               5         0.0009   
259200                    2         0.0004   
259200 only               2         0.0004   
432000                    1         0.0002   
432000 only               1         0.0002   
604800                    2         0.0004   
604800 only               1         0.0002   
864000                    4         0.0007   
864000 only               4         0.0007   
7776000                   2         0.0004   
7776000 only              2         0.0004   
None                      147762    26.7861  
None only                 143812    26.07    

Certificate sig alg     Count     Percent 
-------------------------+---------+--------
None                      9012      1.6337   
ecdsa-with-SHA256         61035     11.0643  
sha1WithRSAEncryption     33972     6.1584   
sha256WithRSAEncryption   472384    85.6331  
sha384WithRSAEncryption   5         0.0009   
sha512WithRSAEncryption   59        0.0107   

Certificate key size    Count     Percent 
-------------------------+---------+--------
ECDSA 256                 64371     11.6691  
ECDSA 384                 20        0.0036   
ECDSA 521                 1         0.0002   
RSA 1024                  29        0.0053   
RSA 2048                  480108    87.0333  
RSA 2049                  2         0.0004   
RSA 2056                  2         0.0004   
RSA 2058                  3         0.0005   
RSA 2084                  4         0.0007   
RSA 2086                  1         0.0002   
RSA 2096                  2         0.0004   
RSA 2432                  2         0.0004   
RSA 3071                  1         0.0002   
RSA 3072                  141       0.0256   
RSA 3073                  1         0.0002   
RSA 3076                  6         0.0011   
RSA 3096                  2         0.0004   
RSA 3248                  4         0.0007   
RSA 4048                  4         0.0007   
RSA 4056                  15        0.0027   
RSA 4092                  2         0.0004   
RSA 4094                  2         0.0004   
RSA 4095                  1         0.0002   
RSA 4096                  25981     4.7098   
RSA 8192                  8         0.0015   
RSA 8392                  1         0.0002   
RSA/ECDSA Dual Stack      19066     3.4563

OCSP stapling             Count     Percent 
-------------------------+---------+--------
Supported                 128880    23.3632  
Unsupported               422757    76.6368  

Supported Protocols       Count     Percent
-------------------------+---------+-------
SSL2                      18283     3.3143
SSL2 Only                 14        0.0025
SSL3                      101196    18.3447
SSL3 Only                 1158      0.2099
SSL3 or TLS1 Only         54616     9.9007
SSL3 or lower Only        1168      0.2117
TLS1                      542011    98.255
TLS1 Only                 34339     6.2249
TLS1 or lower Only        70962     12.8639
TLS1.1                    467843    84.8099
TLS1.1 Only               333       0.0604
TLS1.1 or up Only         8279      1.5008
TLS1.2                    477009    86.4715
TLS1.2 Only               2566      0.4652
TLS1.2, 1.0 but not 1.1   9002      1.6319


Statistics from 587252 chains provided by 715935 hosts

Server provided chains    Count     Percent
-------------------------+---------+-------
complete                  525344    73.3787
incomplete                23228     3.2444
untrusted                 167363    23.3768

Trusted chain statistics
========================

Chain length              Count     Percent
-------------------------+---------+-------
2                         13        0.0022
3                         585030    99.6216
4                         2197      0.3741
5                         12        0.002

CA key size in chains     Count
-------------------------+---------
ECDSA 256                 61011     
ECDSA 384                 61009     
RSA 1024                  26        
RSA 2045                  2         
RSA 2048                  885900    
RSA 4096                  168764    

Chains with CA key        Count     Percent
-------------------------+---------+-------
ECDSA 256                 61011     10.3892
ECDSA 384                 61009     10.3889
RSA 1024                  24        0.0041
RSA 2045                  2         0.0003
RSA 2048                  525829    89.5406
RSA 4096                  168152    28.6337

Signature algorithm (ex. root) Count
------------------------------+---------
ecdsa-with-SHA384              61004     
sha1WithRSAEncryption          38564     
sha256WithRSAEncryption        338536    
sha384WithRSAEncryption        151286    
sha512WithRSAEncryption        70        

Eff. host cert chain LoS  Count     Percent
-------------------------+---------+-------
80                        38602     6.5733
112                       487624    83.0349
128.0                     61026     10.3918

Most popular root CAs                         Count     Percent
---------------------------------------------+---------+-------
(d6325660) COMODO RSA Certification Authority 135263    23.0332
(2c543cd1) GeoTrust Global CA                 101180    17.2294
(eed8c118) COMODO ECC Certification Authority 60996     10.3867
(5ad8a5d6) GlobalSign Root CA                 56051     9.5446
(cbf06781) Go Daddy Root Certificate Authorit 49631     8.4514
(b204d74a) VeriSign Class 3 Public Primary Ce 31013     5.281
(244b5494) DigiCert High Assurance EV Root CA 20318     3.4598
(2e4eed3c) thawte Primary Root CA             18889     3.2165
(fc5a8f99) USERTrust RSA Certification Author 15885     2.705
(653b494a) Baltimore CyberTrust Root          13245     2.2554
(4bfab552) Starfield Root Certificate Authori 10600     1.805
(3513523f) DigiCert Global Root CA            9653      1.6438
(ae8153b9) StartCom Certification Authority   8863      1.5092
(2e5ac55d) DST Root CA X3                     7351      1.2518


Test ran between 17th of March and 5th of April 2016
Advertisements

October 2015 scan results

Because the previous two months were published with a much longer delay than usual (sorry about that, will explain myself in future post) the following analysis compares this month’s results to July, not September.

Number of servers supporting TLS has grown by over 4% during those 3 months. The most profound change during that time was decommissioning of over 10% of SHA-1 using certificates. Rest of changes is just continuation of established trends.

Cipher suites

3DES continues the somewhat surprising increase in support, gaining another 1.6%. AES in general and AES in CBC mode in particular have shown little change, gaining less than half a percent in use. AES-GCM has grown by over 5% at the same time. Similarly to AES, Camellia and ChaCha20 support is relatively stable, both gaining about 0.2% each.

Use of insecure ciphers has decreased somewhat, loosing nearly 3% since last publication of results. RC4 has lost a staggering 10% of market share, for the first time since scans began falling below Camellia levels.

Unfortunately, there are still over 1100 servers which require use of RC4 for a successful connection, or over 1600 if you’re using Firefox 35.

Use of server side cipher ordering also plateaued, with just 0.2% more servers opting to ignore client presented order of ciphers for negotiation.

Key exchange

Support for the modern ECDHE key exchange has grown by nearly 5% during that time, reaching over 79% of servers.

The older and slower DHE key exchange has lost 1.6% of support among the servers.

The insecure ADH and AECDH key exchanges have also fallen, the former to a level of below 1000 servers, the latter by 1.5% to just over 2.1%.

Most of the increases in the ECDHE support are due to P-256 NIST curve, gaining nearly 4.5%.

We also see very good changes in DHE support, use of 1024 bit prime has fallen by 9% while use of 2048 bit prime has risen by 8%. For ciphersuites effectively negotiated, the changes are a bit less pronounced, with just 4.1% less servers picking a DHE ciphersuite with 1024 bit prime, making connections to 11.4% of servers a bit less secure. While preference for 2048 bit DH risen by just 1.12%.

Overall, 1.6% more servers support ciphersuites that provide Forward Secrecy while a very nice 4.4% more actually prefer them.

As usual, the support for ECDHE is mostly driven by P-256 (a.k.a. prime256v1), with it gaining 4.8% more market share. One other curve has finally risen to the double digit level (though just barely), with an increase of 0.2% – P-384, a.k.a. secp384r1.

Hash and signature algorithms

Support for SHA256 with RSA certificates has grown by nearly 5%, stronger hashes have seen smaller changes with SHA384 and SHA512 gaining only 3.8%.

Support for the insecure MD5 is also increasing, thankfully at a slower rate, with it gaining only 0.7%. Number of servers that support only the rather weak SHA1 is decreasing though, over those 3 months it has fallen by 1.2%.

Vulnerabilities

Support for secure renegotiation is still missing in 3.6% of servers, loosing just over half a percent. Similarly, 1.2% of servers are vulnerable to the CRIME attack, a change of only 0.2%.

Certificates

Certificates used by servers have seen comparatively the biggest change. SHA-1 use has fallen by nearly 13%! The switch was shared by SHA-256 with RSA (increase by just over 12%) and SHA-256 with ECDSA (increase by 2.6%).

We’ve also finally reached a “less than 100 servers with 1024 bit RSA keys” milestone. Use of 2048 bit RSA has fallen by just one percent, at the same time use of 256 bit ECDSA has grown by 2.67%.

The list of CA’s with more than 1% of servers have also shrunk by 2 positions.

Protocols

Still over half a thousand of servers support only the insecure SSLv2 and SSLv3 protocols.

At the same time, more than 4 in 5 servers support the newest and most secure TLS v1.2 protocol.

Results

SSL/TLS survey of 523658 websites from Alexa's top 1 million
Stats only from connections that did provide valid certificates
(or anonymous DH from servers that do also have valid certificate installed)


Supported Ciphers         Count     Percent
-------------------------+---------+-------
3DES                      450366    86.0038
3DES Only                 598       0.1142
AES                       516026    98.5426
AES Only                  22924     4.3777
AES-CBC                   515568    98.4551
AES-CBC Only              10087     1.9263
AES-GCM                   388464    74.1828
AES-GCM Only              378       0.0722
CAMELLIA                  234209    44.7256
CAMELLIA Only             3         0.0006
CHACHA20                  64701     12.3556
CHACHA20 Only             1         0.0002
Insecure                  61963     11.8327
RC4                       213861    40.8398
RC4 Only                  1101      0.2103
RC4 Preferred             22873     4.3679
RC4 forced in TLS1.1+     11792     2.2519
x:FF 29 RC4 Only          1377      0.263
x:FF 29 RC4 Preferred     26049     4.9744
x:FF 29 incompatible      312       0.0596
x:FF 35 RC4 Only          1656      0.3162
x:FF 35 RC4 Preferred     26149     4.9935
x:FF 35 incompatible      315       0.0602
y:DHE-RSA-SEED-SHA        84215     16.0821
y:IDEA-CBC-SHA            78851     15.0577
y:SEED-SHA                95873     18.3083
z:ADH-AES128-GCM-SHA256   395       0.0754
z:ADH-AES128-SHA          756       0.1444
z:ADH-AES128-SHA256       295       0.0563
z:ADH-AES256-GCM-SHA384   403       0.077
z:ADH-AES256-SHA          764       0.1459
z:ADH-AES256-SHA256       297       0.0567
z:ADH-CAMELLIA128-SHA     380       0.0726
z:ADH-CAMELLIA256-SHA     388       0.0741
z:ADH-DES-CBC-SHA         305       0.0582
z:ADH-DES-CBC3-SHA        775       0.148
z:ADH-RC4-MD5             638       0.1218
z:ADH-SEED-SHA            313       0.0598
z:AECDH-AES128-SHA        11266     2.1514
z:AECDH-AES256-SHA        11290     2.156
z:AECDH-DES-CBC3-SHA      11231     2.1447
z:AECDH-NULL-SHA          59        0.0113
z:AECDH-RC4-SHA           10599     2.024
z:DES-CBC-MD5             11791     2.2517
z:DES-CBC-SHA             36853     7.0376
z:DES-CBC3-MD5            24006     4.5843
z:ECDHE-RSA-NULL-SHA      63        0.012
z:EDH-RSA-DES-CBC-SHA     31633     6.0408
z:EXP-ADH-DES-CBC-SHA     208       0.0397
z:EXP-ADH-RC4-MD5         205       0.0391
z:EXP-DES-CBC-SHA         15360     2.9332
z:EXP-EDH-RSA-DES-CBC-SHA 12356     2.3596
z:EXP-RC2-CBC-MD5         18735     3.5777
z:EXP-RC4-MD5             19564     3.736
z:EXP1024-DES-CBC-SHA     4870      0.93
z:EXP1024-RC4-SHA         4967      0.9485
z:IDEA-CBC-MD5            2349      0.4486
z:NULL-MD5                227       0.0433
z:NULL-SHA                232       0.0443
z:NULL-SHA256             29        0.0055
z:RC2-CBC-MD5             12033     2.2979
z:RC4-64-MD5              968       0.1849

Cipher ordering           Count     Percent
-------------------------+---------+-------
Client side               134694    25.7217
Server side               388964    74.2783

Supported Handshakes      Count     Percent
-------------------------+---------+-------
ADH                       903       0.1724
AECDH                     11321     2.1619
DHE                       286818    54.772
ECDH                      3         0.0006
ECDHE                     415495    79.3447
ECDHE and DHE             219028    41.8265
RSA                       471189    89.9803

Supported PFS             Count     Percent  PFS Percent
-------------------------+---------+--------+-----------
DH,1024bits               162798    31.0886  56.76
DH,1536bits               1         0.0002   0.0003
DH,2048bits               116370    22.2225  40.5728
DH,2236bits               11        0.0021   0.0038
DH,2432bits               1         0.0002   0.0003
DH,3072bits               109       0.0208   0.038
DH,3092bits               1         0.0002   0.0003
DH,4094bits               1         0.0002   0.0003
DH,4096bits               7102      1.3562   2.4761
DH,512bits                43        0.0082   0.015
DH,768bits                450       0.0859   0.1569
DH,8192bits               2         0.0004   0.0007
ECDH,B-571,570bits        1628      0.3109   0.3918
ECDH,K-163,163bits        1         0.0002   0.0002
ECDH,K-571,570bits        1         0.0002   0.0002
ECDH,P-192,192bits        8         0.0015   0.0019
ECDH,P-224,224bits        71        0.0136   0.0171
ECDH,P-256,256bits        402982    76.9552  96.9884
ECDH,P-384,384bits        2860      0.5462   0.6883
ECDH,P-521,521bits        8826      1.6855   2.1242
Prefer DH,1024bits        59986     11.4552  20.9143
Prefer DH,1536bits        1         0.0002   0.0003
Prefer DH,2048bits        9957      1.9014   3.4715
Prefer DH,3072bits        13        0.0025   0.0045
Prefer DH,4096bits        345       0.0659   0.1203
Prefer DH,768bits         65        0.0124   0.0227
Prefer ECDH,B-571,570bits 1429      0.2729   0.3439
Prefer ECDH,K-163,163bits 1         0.0002   0.0002
Prefer ECDH,K-571,570bits 1         0.0002   0.0002
Prefer ECDH,P-224,224bits 55        0.0105   0.0132
Prefer ECDH,P-256,256bits 358890    68.5352  86.3765
Prefer ECDH,P-384,384bits 2659      0.5078   0.64
Prefer ECDH,P-521,521bits 7931      1.5145   1.9088
Prefer PFS                441333    84.2789  0
Support PFS               483285    92.2902  0

Supported ECC curves      Count     Percent 
-------------------------+---------+--------
brainpoolP256r1           1825      0.3485   
brainpoolP384r1           1827      0.3489   
brainpoolP512r1           1828      0.3491   
prime192v1                1461      0.279    
prime256v1                413390    78.9427  
prime256v1 Only           360620    68.8656  
secp160k1                 1415      0.2702   
secp160r1                 1422      0.2716   
secp160r2                 1414      0.27     
secp192k1                 1433      0.2737   
secp224k1                 1489      0.2843   
secp224r1                 3846      0.7344   
secp256k1                 3218      0.6145   
secp384r1                 53089     10.1381  
secp384r1 Only            364       0.0695   
secp521r1                 22417     4.2808   
secp521r1 Only            125       0.0239   
sect163k1                 1415      0.2702   
sect163k1 Only            1         0.0002   
sect163r1                 1414      0.27     
sect163r2                 1414      0.27     
sect193r1                 1412      0.2696   
sect193r2                 1412      0.2696   
sect233k1                 1482      0.283    
sect233r1                 1481      0.2828   
sect239k1                 1481      0.2828   
sect283k1                 3187      0.6086   
sect283r1                 3187      0.6086   
sect409k1                 3189      0.609    
sect409r1                 3189      0.609    
sect571k1                 3201      0.6113   
sect571r1                 3201      0.6113   

Unsupported curve fallback     Count     Percent 
------------------------------+---------+--------
False                          70006     13.3686  
True                           291129    55.5953  
order-specific                 72        0.0137   
unknown                        162451    31.0223  

ECC curve ordering        Count     Percent 
-------------------------+---------+--------
client                    4674      0.8926   
inconclusive-noecc        10        0.0019   
server                    409225    78.1474  
unknown                   109749    20.9581  

TLSv1.2 PFS supported sigalgs  Count     Percent 
------------------------------+---------+--------
ECDSA-SHA1                     38366     7.3265   
ECDSA-SHA1 Only                3         0.0006   
ECDSA-SHA224                   38357     7.3248   
ECDSA-SHA256                   49346     9.4233   
ECDSA-SHA384                   49344     9.4229   
ECDSA-SHA512                   49347     9.4235   
ECDSA-SHA512 Only              3         0.0006   
RSA-MD5                        168481    32.1739  
RSA-SHA1                       361209    68.978   
RSA-SHA1 Only                  43815     8.3671   
RSA-SHA224                     296284    56.5797  
RSA-SHA256                     324294    61.9286  
RSA-SHA256 Only                5869      1.1208   
RSA-SHA384                     297506    56.813   
RSA-SHA384 Only                1         0.0002   
RSA-SHA512                     297620    56.8348  
RSA-SHA512 Only                137       0.0262   

TLSv1.2 PFS ordering           Count     Percent 
------------------------------+---------+--------
client                         238653    45.5742  
indeterminate                  202       0.0386   
intolerant                     4295      0.8202   
order-fallback                 10        0.0019   
server                         163641    31.2496  
unsupported                    21408     4.0882   

TLSv1.2 PFS sigalg fallback    Count     Percent 
------------------------------+---------+--------
ECDSA SHA1                     38349     7.3233   
ECDSA intolerant               24        0.0046   
ECDSA pfs-rsa-SHA512           10983     2.0974   
ECDSA soft-nopfs               1         0.0002   
RSA False                      167225    31.934   
RSA SHA1                       166732    31.8399  
RSA intolerant                 34038     6.5      
RSA pfs-ecdsa-SHA512           5         0.001    
RSA soft-nopfs                 1316      0.2513   

Renegotiation             Count     Percent 
-------------------------+---------+--------
False                     6661      1.272    
insecure                  19263     3.6785   
secure                    497734    95.0494  

Compression               Count     Percent 
-------------------------+---------+--------
1 (zlib compression)      9887      1.8881   
False                     6661      1.272    
NONE                      507110    96.8399  

TLS session ticket hint   Count     Percent 
-------------------------+---------+--------
1                         2         0.0004   
1 only                    2         0.0004   
2                         2         0.0004   
2 only                    2         0.0004   
5                         2         0.0004   
5 only                    2         0.0004   
10                        8         0.0015   
10 only                   8         0.0015   
15                        9         0.0017   
15 only                   9         0.0017   
30                        10        0.0019   
30 only                   9         0.0017   
60                        96        0.0183   
60 only                   89        0.017    
65                        1         0.0002   
65 only                   1         0.0002   
70                        7         0.0013   
75                        1         0.0002   
75 only                   1         0.0002   
100                       18        0.0034   
100 only                  18        0.0034   
120                       26        0.005    
120 only                  26        0.005    
128                       3         0.0006   
128 only                  3         0.0006   
150                       2         0.0004   
180                       42        0.008    
180 only                  39        0.0074   
200                       1         0.0002   
200 only                  1         0.0002   
240                       12        0.0023   
240 only                  12        0.0023   
300                       242606    46.3291  
300 only                  238057    45.4604  
302                       3         0.0006   
302 only                  3         0.0006   
360                       2         0.0004   
360 only                  1         0.0002   
400                       8         0.0015   
400 only                  8         0.0015   
420                       119       0.0227   
420 only                  88        0.0168   
480                       12        0.0023   
480 only                  12        0.0023   
500                       5         0.001    
500 only                  5         0.001    
540                       1         0.0002   
540 only                  1         0.0002   
600                       25719     4.9114   
600 only                  25574     4.8837   
700                       1         0.0002   
700 only                  1         0.0002   
720                       2         0.0004   
720 only                  2         0.0004   
840                       1         0.0002   
840 only                  1         0.0002   
900                       781       0.1491   
900 only                  766       0.1463   
960                       2         0.0004   
960 only                  2         0.0004   
1200                      2230      0.4259   
1200 only                 2222      0.4243   
1320                      1         0.0002   
1320 only                 1         0.0002   
1500                      10        0.0019   
1500 only                 9         0.0017   
1800                      490       0.0936   
1800 only                 476       0.0909   
2100                      1         0.0002   
2100 only                 1         0.0002   
2400                      8         0.0015   
2400 only                 8         0.0015   
2700                      8         0.0015   
2700 only                 8         0.0015   
3000                      23        0.0044   
3000 only                 23        0.0044   
3600                      575       0.1098   
3600 only                 566       0.1081   
3900                      1         0.0002   
3900 only                 1         0.0002   
4100                      1         0.0002   
4100 only                 1         0.0002   
4200                      1         0.0002   
5160                      1         0.0002   
5160 only                 1         0.0002   
5400                      20        0.0038   
5400 only                 8         0.0015   
6000                      66        0.0126   
6000 only                 66        0.0126   
7200                      14981     2.8608   
7200 only                 14963     2.8574   
10800                     2576      0.4919   
10800 only                2570      0.4908   
14400                     102       0.0195   
14400 only                102       0.0195   
18000                     7         0.0013   
18000 only                7         0.0013   
21600                     4999      0.9546   
21600 only                4999      0.9546   
25200                     1         0.0002   
25200 only                1         0.0002   
28800                     2018      0.3854   
28800 only                1601      0.3057   
36000                     1153      0.2202   
36000 only                1144      0.2185   
43200                     34        0.0065   
43200 only                34        0.0065   
60000                     1         0.0002   
60000 only                1         0.0002   
64800                     53897     10.2924  
64800 only                53896     10.2922  
72000                     16        0.0031   
72000 only                16        0.0031   
84600                     1         0.0002   
84600 only                1         0.0002   
86000                     39        0.0074   
86000 only                39        0.0074   
86400                     3516      0.6714   
86400 only                3512      0.6707   
100800                    10300     1.9669   
100800 only               10290     1.965    
129600                    9         0.0017   
129600 only               9         0.0017   
172800                    6         0.0011   
172800 only               6         0.0011   
216000                    1         0.0002   
216000 only               1         0.0002   
432000                    2         0.0004   
432000 only               2         0.0004   
604800                    1         0.0002   
864000                    4         0.0008   
864000 only               4         0.0008   
None                      162322    30.9977  
None only                 157058    29.9925  

Certificate sig alg     Count     Percent 
-------------------------+---------+--------
None                      11981     2.2879   
ecdsa-with-SHA256         49307     9.4159   
sha1WithRSAEncryption     86227     16.4663  
sha256WithRSAEncryption   399420    76.275   
sha384WithRSAEncryption   6         0.0011   
sha512WithRSAEncryption   28        0.0053   

Certificate key size    Count     Percent 
-------------------------+---------+--------
ECDSA 256                 49343     9.4228   
ECDSA 384                 15        0.0029   
RSA 1024                  56        0.0107   
RSA 10240                 8         0.0015   
RSA 2047                  1         0.0002   
RSA 2048                  464934    88.7858  
RSA 2049                  4         0.0008   
RSA 2056                  4         0.0008   
RSA 2058                  2         0.0004   
RSA 2064                  2         0.0004   
RSA 2084                  4         0.0008   
RSA 2096                  2         0.0004   
RSA 2408                  2         0.0004   
RSA 2432                  1         0.0002   
RSA 2480                  1         0.0002   
RSA 3071                  1         0.0002   
RSA 3072                  127       0.0243   
RSA 3096                  2         0.0004   
RSA 3248                  2         0.0004   
RSA 4042                  1         0.0002   
RSA 4048                  1         0.0002   
RSA 4056                  25        0.0048   
RSA 4069                  3         0.0006   
RSA 4086                  2         0.0004   
RSA 4092                  6         0.0011   
RSA 4094                  1         0.0002   
RSA 4096                  20149     3.8477   
RSA 4098                  1         0.0002   
RSA 8192                  4         0.0008   
RSA/ECDSA Dual Stack      11039     2.1081

OCSP stapling             Count     Percent 
-------------------------+---------+--------
Supported                 113302    21.6366  
Unsupported               410356    78.3634  

Supported Protocols       Count     Percent
-------------------------+---------+-------
SSL2                      24244     4.6297
SSL2 Only                 19        0.0036
SSL3                      122263    23.3479
SSL3 Only                 484       0.0924
SSL3 or TLS1 Only         69496     13.2713
SSL3 or lower Only        503       0.0961
TLS1                      518406    98.9971
TLS1 Only                 41584     7.9411
TLS1 or lower Only        92178     17.6027
TLS1.1                    418156    79.8529
TLS1.1 Only               267       0.051
TLS1.1 or up Only         4492      0.8578
TLS1.2                    428200    81.7709
TLS1.2 Only               1845      0.3523
TLS1.2, 1.0 but not 1.1   10863     2.0744



Statistics from 549280 chains provided by 697275 hosts

Server provided chains    Count     Percent
-------------------------+---------+-------
complete                  487661    69.9381
incomplete                27391     3.9283
untrusted                 182223    26.1336

Trusted chain statistics
========================

Chain length              Count     Percent
-------------------------+---------+-------
2                         114       0.0208
3                         547038    99.5918
4                         2101      0.3825
5                         27        0.0049

CA key size in chains     Count
-------------------------+---------
ECDSA 256                 48991     
ECDSA 384                 48992     
RSA 1024                  101       
RSA 2045                  3         
RSA 2048                  865095    
RSA 4096                  137419    

Chains with CA key        Count     Percent
-------------------------+---------+-------
ECDSA 256                 48991     8.9191
ECDSA 384                 48992     8.9193
RSA 1024                  99        0.018
RSA 2045                  3         0.0005
RSA 2048                  499889    91.008
RSA 4096                  136911    24.9255

Signature algorithm (ex. root) Count
------------------------------+---------
ecdsa-with-SHA384              48986     
sha1WithRSAEncryption          92825     
sha256WithRSAEncryption        287083    
sha384WithRSAEncryption        122355    
sha512WithRSAEncryption        72        

Eff. host cert chain LoS  Count     Percent
-------------------------+---------+-------
80                        92922     16.9171
112                       407358    74.1622
128                       49000     8.9208

Root CAs                                      Count     Percent
---------------------------------------------+---------+-------
(d6325660) COMODO RSA Certification Authority 113492    20.662
(2c543cd1) GeoTrust Global CA                 107601    19.5895
(eed8c118) COMODO ECC Certification Authority 48977     8.9166
(cbf06781) Go Daddy Root Certificate Authorit 47939     8.7276
(5ad8a5d6) GlobalSign Root CA                 44123     8.0329
(b204d74a) VeriSign Class 3 Public Primary Ce 29359     5.345
(244b5494) DigiCert High Assurance EV Root CA 25999     4.7333
(2e4eed3c) thawte Primary Root CA             23372     4.255
(157753a5) AddTrust External CA Root          20188     3.6754
(653b494a) Baltimore CyberTrust Root          12053     2.1943
(ae8153b9) StartCom Certification Authority   9139      1.6638
(fc5a8f99) USERTrust RSA Certification Author 8775      1.5975
(3513523f) DigiCert Global Root CA            8281      1.5076
(4bfab552) Starfield Root Certificate Authori 8226      1.4976
(480720ec) GeoTrust Primary Certification Aut 5570      1.0141


Scan performed between 19th of October and 9th of November 2015