TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
TLS 1.2 | 256-bit + Forward Secrecy Recommended
Cipher Suite Details
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA3840xC02C49196What is TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384?
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 is the high-security variant combining ECDSA certificates, ECDHE key exchange, and AES-256-GCM encryption. This provides 256-bit security throughout: ECDSA uses P-256 or P-384 curves, ECDHE uses matching curves, and AES-256-GCM encrypts data. SHA-384 is used for key derivation. This cipher suite is suitable for highly sensitive applications requiring long-term secrecy. The combination of ECDSA certificates and AES-256 is recommended for government and military use (NSA Suite B at the 256-bit security level).
Role in JA3 Fingerprinting
The TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 cipher suite is part of the TLS Client Hello that JA3 analyzes. Cipher suite order and selection are key indicators of browser type and version.
JA3 Format: TLS_VERSION,CIPHERS,EXTENSIONS,CURVES,POINT_FORMATS
Different browsers prioritize different cipher suites (Chrome prefers ChaCha20 on mobile, Firefox prioritizes AES-GCM, etc.), making cipher suite ordering a reliable fingerprint.
Test Your Cipher Suites
See which cipher suites your browser advertises, including TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384.