Speaking in tongues practical evaluation of TLS cipher suites compatibility

The Transport Layer Security (TLS) protocol is still the de-facto standard for secure network connections over an insecure medium like the internet. But its flexibility concerning the algorithms used for securing a channel between two parties can also be a weakness, due to the possible agreement on insecure ciphers. In this work we examine an existing white paper (Applied Crypto Hardening) giving recommendations on how to securely configure SSL/TLS connections with regard to the practical feasibility of these recommendations. In addition we propose an additional configuration set with the aim of increasing compatibility as well as security. We also developed a small Cipher Negotiation Crawler (CiNeg) to test TLS-handshakes using given cipher configurations with a supplied list of websites and show its practical usability.