Google App Engine Node.js TLS 1.2

Question

Google App Engine Node.js TLS 1.2

Our application is hosted on the Google App Engine Node.js (flexible environment). We are currently reviewing a security audit and are unable to resolve the issue that the Google App Engine supports TLS versions 1.0 and 1.1.

Is there a way to ensure that only TLS 1.2 is used? And also block ciphers that are below 128 bits?

+5

google-app-engine node.js ssl tls1.2 google-cloud-platform

alexkom Jan 23 '18 at 14:48

source share

1 answer

jcjones1515 · Answer 1 · 2018-01-25T04:36:06+0000

I have not tried this, so I cannot guarantee that this will work, but it looks like you can use the HTTP (S) Load Balancer . SSL policies are customizable so that they most likely meet the requirements of your security review.

Google App Engine Node.js TLS 1.2

More articles: