2. Changes to TLS
2. Changes to TLS
Because of the RC4 deficiencies noted in Section 1, the following apply:
-
TLS clients MUST NOT include RC4 cipher suites in the ClientHello message.
-
TLS servers MUST NOT select an RC4 cipher suite when a TLS client sends such a cipher suite in the ClientHello message.
-
If the TLS client only offers RC4 cipher suites, the TLS server MUST terminate the handshake. The TLS server MAY send the
insufficient_securityfatal alert in this case.
Appendix A lists the RC4 cipher suites defined for TLS.