Perfect Forward Secrecy is all the rage, so evaluating its deployment is most interesting. I am actually triple checking my results to make sure that the percentage below, 75% of websites supporting PFS, is accurate, because it seems so large to me. Even more surprising, is the fact that 61% of tested websites, either prefer, or let the client prefer, a PFS key exchange (DHE or ECDHE) to other ciphers. ... As expected, the immense majority, 98%, of DHE keys are 1024 bits.
Cutouts is an open source application. Code licensed under the MIT license. Copyright 2018 Siddharth Kannan