Attention: The FAA is improving website security and has discontinued support for all weak ciphers on sapt.faa.gov. This includes all CBC ciphers. If you're having trouble connecting, contact the Helpdesk.
Notice: FAA has published revised policy on preflight availability predictions for aircraft equipped with SA-Aware GPS receivers. For more details, see: https://www.faa.gov/air_traffic/technology/equipadsb and Advisory Circular (AC) 90-114B CHG 1.
You will need to support one of these ciphers:
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
The plan to disable support for weak ciphers on the server includes all of this:
Any cipher with key length less than 128 bits
Export-class cipher suites
NULL ciphers
Ciphers that support unauthenticated modes
Ciphers assessed at security strengths below 112 bits
All RC4 ciphers
All CBC mode ciphers due to POODLE, Zombie POODLE, GOLDENDOODLE, 0-Length OpenSSL, and Sleeping POODLE vulnerabilities
All 64-bit block ciphers
All ciphers using MD5 and SHA1 for cryptographic hash functions
Thus, the following ciphers currently supported by the server are weak and will be disabled:
U.S. Department of Transportation