128bit vs 256bit SSL HTTPS communications & certificates

Discussion in 'privacy technology' started by papa1234, Oct 20, 2014.

  1. papa1234

    papa1234 Registered Member

    Joined:
    Jul 21, 2014
    Posts:
    6
    So, pardon my ignorance, but
    I noticed that every session with a major website like facebook/yahoo/my bank are all using Certificates with 128bit keys over SSL.

    Why is this so? I then also checked out the cipher suite prioritisation on my windows 7 machine, and noticed that quite a few 128 bit cyphers take precedence over 256bit in the list. Again, confusing. Am I wrong to presume 256bit encyption should be prioritised considering it should be theoretically safer?

    I saw someone mentioning 256bit keys for online banks but I can confirm my banks communcations are only 128 bit key encrypted. Am I totally wrong in presuming 256bit encryption is inhernetly stronger and should hence be used where possible, especially banks?


    thanks
     
  2. Carver

    Carver Registered Member

    Joined:
    Feb 5, 2006
    Posts:
    1,910
    Location:
    USA
    It is not the bit strength of the cypher but the implemention .
     
    Last edited: Oct 20, 2014
  3. papa1234

    papa1234 Registered Member

    Joined:
    Jul 21, 2014
    Posts:
    6
    Is this due to fact vulnerabilities are mostly found in the implementation and the cypher is not brute forced?
     
  4. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
  5. papa1234

    papa1234 Registered Member

    Joined:
    Jul 21, 2014
    Posts:
    6
    Beautiful article, been googling for something like this without success, thank you!
     
  6. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    You're welcome :).

    Another differentiating aspect is support or not for Forward Secrecy.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.