TLS_AES_128_GCM_SHA256
TLS 1.3 | 128-bit Recommended
Cipher Suite Details
TLS_AES_128_GCM_SHA2560x13014865What is TLS_AES_128_GCM_SHA256?
TLS_AES_128_GCM_SHA256 is the most widely used TLS 1.3 cipher suite, combining AES-128 encryption in GCM (Galois/Counter Mode) with SHA-256 for key derivation. It provides 128-bit security with excellent performance on both hardware and software implementations. AES-128-GCM is authenticated encryption (AEAD - Authenticated Encryption with Associated Data), providing both confidentiality and integrity in a single operation. GCM mode is highly parallelizable, making it ideal for modern multi-core CPUs. This cipher suite is mandatory to implement in TLS 1.3 and is the default choice for most browsers and servers.
Role in JA3 Fingerprinting
The TLS_AES_128_GCM_SHA256 cipher suite is part of the TLS Client Hello that JA3 analyzes. Cipher suite order and selection are key indicators of browser type and version.
JA3 Format: TLS_VERSION,CIPHERS,EXTENSIONS,CURVES,POINT_FORMATS
Different browsers prioritize different cipher suites (Chrome prefers ChaCha20 on mobile, Firefox prioritizes AES-GCM, etc.), making cipher suite ordering a reliable fingerprint.
Test Your Cipher Suites
See which cipher suites your browser advertises, including TLS_AES_128_GCM_SHA256.