Firefox telemetry shows ECDH as the current key exchange champion at almost 80% of handshakes. While it's true that that sort of statistic has an over-representation from sites like Facebook and Google, it suggests that maybe this needs tweaking:
The most common ciphersuites
used for HTTPS today, for example, are based on using RSA encryption
in such a way that if an attacker has the private key, the attacker
can derive the session keys from passive observation of a session.
martinthomson
commented
8 years ago
Firefox telemetry shows ECDH as the current key exchange champion at almost 80% of handshakes. While it's true that that sort of statistic has an over-representation from sites like Facebook and Google, it suggests that maybe this needs tweaking: