Rated 4 out of 5 stars

by Bret Schmerker on Jan. 31, 2017 ·

This Extension provides comprehensive information on the host Server cipher and certificates for any Web page through TLS 1.2; I haven't seen a miss to date as of January 2017. However, the Internet Engineering Task Force is altering the protocol for TLS 1.3b15 in such a way that the "Insecure Connection" alarm this Extension sounds false positives for TLS 1.3 only; e.g., a TLS_ECDHE_ECC_WITH_AES_128_GCM_SHA256 ciphersuite reports as TLS_AES_128_GCM_SHA256 with the key exchange and certificate algorithms not reporting. (TLS 1.3 Elliptic Curve Certificates show correctly, as ECC_256_SHA256, ECC_256_SHA384, and/or ECC_384_SHA384.)

This review is for a previous version of the add-on (4.1.1). 

by Gavin Lloyd (Developer) on Jan. 31, 2017 ·

Can you provide a domain that exhibits this issue? If possible, create an issue on GitHub:
https://github.com/gavinhungry/cipherfox/issues