TLS 1.0, DES, 3DES, CBE

554 views

Skip to first unread message

Gonzalo Lazzaroni

unread,

Jun 27, 2021, 9:17:02 AM6/27/21

to Google App Engine

Hello everyone, how are you?

I wonder if it's possible disable or to ask to disable TLS 1.0, DES, 3DES and CBE.

I'm using App Engine and I found some vulnerabilities like SWEET32 and LUCKY13.

Thank you, guys.

Greetings

babdelrahman

unread,

Jul 5, 2021, 10:04:12 AM7/5/21

to Google App Engine

Google introduced the usage of GCLB to self-manage SSL certificate and SSL policies which include TLS version and ciphers, on serverless platforms.

Using Google Cloud Load Balancer (GCLB) with Serverless NEGs, you can define a SSL security policy to restrict the TLS versions and cipher suites used.

This can be implemented by following documents [1] [2] [3] and [4] .

[1] https://cloud.google.com/load-balancing/docs/https/setting-up-https-serverless
[2] https://cloud.google.com/load-balancing/docs/negs/serverless-neg-concepts

[3] https://cloud.google.com/load-balancing/docs/ssl-policies-concepts#defining_an_ssl_policy

[4] https://cloud.google.com/load-balancing/docs/use-ssl-policies

Reply all

Reply to author

Forward

0 new messages