Safari does not display SSL cipher
| Originator: | kajtzu | ||
| Number: | rdar://11161849 | Date Originated: | 31-Mar-2012 10:35 PM |
| Status: | Open | Resolved: | |
| Product: | Safari | Product Version: | 5.1 |
| Classification: | Security | Reproducible: | Always |
Summary: There is no way of determining what SSL cipher was negotiated between Safari and the web server. Typically a browser (Firefox, IE, Chrome, etc.) will display the negotiated Cipher as follows when clicking on the lock icon. "Your connection to demo.basen.com is encrypted with 128-bit encryption. The connection uses TLS 1.0. The connection is encrypted using AES_128_CBC, with SHA1 for message authentication and RSA as the key exchange mechanism." (example from Chrome) Steps to Reproduce: 1. https://www.google.com/ 2. click lock icon in the right upper corner of Safari Expected Results: Display cipher in use Actual Results: Not shown anywhere Regression: Notes: Copy of this filed on OpenRadar for everyone else :-)
Comments
Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!