How can we improve the Microsoft Edge developer experience?

Support ChaCha20/Poly1305 cipher suites in Edge/Schannel

ChaCha20/Poly1305 cipher suites are considered as the best stream cipher replacement for the obsolete RC4 stream cipher suites. It's also the only AEAD alternative to AES-GCM cipher suites right now.

It's already supported by Google Chrome, Android and Opera and just recently patch with ChaCha20/Poly1305 landed in OpenSSL library.
https://github.com/openssl/openssl/commit/bd989745b7a4796dceff89d93b6b7ac1561c6227

I think it would be helpful to support it in Schannel and Edge as well.

157 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Martin SuchanMartin Suchan shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    1 comment

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • Bernd PBernd P commented  ·   ·  Flag as inappropriate

        I also strongly recommend the Addition of ChaCha20-Poly1305 because recently the AES Suites are the only usable modern Cipher Suites within TLS currently . MS also should consider the removal of 3DES Suites (which have no forward Secrecy) on the medium Haul as well as finally remove RC4 and weaker Algorithms everywhere this is possible. Unluckliy there are still too many Servers around providing NO Forward Secrecy and on TLS 1.0 only so we cannot quit using RSA Suites w/o AEAD for now.

      Feedback and Knowledge Base