WQI.web​qualityindex
Method v1.2.0 86 live / 86 total factors methodology

methodology / Security & Infrastructure / #27

TLS minimum version & cipher suite quality

#27 · Recommended · Web Quality · weighted · Security & Infrastructure · weight 1.3% · impl implemented · method v1.2.0

Web Quality factor

This factor is part of Web Quality — the weighted 0..100 score that sits above Web Standards. Its weight depends on what kind of site is being measured. Web Standards items take priority; this factor only enters the score once Web Standards passes.

Base weight
1.0 applied to every site type unless overridden below
Why this weight
TLS 1.0/1.1 leaves visitors vulnerable to known attacks. Required basically everywhere.

Per-site-type overrides

Site type Weight Δ vs base
Personal site 0.5 -0.5

Site types not listed inherit the base weight.

Same factor, two depths.

What we measure

Old TLS versions (1.0/1.1) and weak cipher suites are known-broken. Modern sites support TLS 1.2 minimum, ideally TLS 1.3, with strong ciphers only.

How to improve your score

Configure web server / CDN to disable TLS 1.0 and 1.1, restrict to AEAD ciphers (AES-GCM, ChaCha20).

Facts

Ticket
WEBQ-27
Category
Security & Infrastructure
Status
live
Weight
1.3%
Data source
Service cost
TLS handshake probe (free)
Scoring impl
implemented
Method version
v1.2.0

Scoring

Scoring formulas are versioned with the methodology. The current method (v1.2.0) maps raw measurements to pass, warn, fail. Factor weights determine how much each contributes to the composite — see the methodology index for the full table.

Cited by these standards

Standards in the Standards Library whose satisfiedBy requirement tree references this factor. Each link goes to the standard's full entry — methodology, scope, and the other factors it relies on.

Version history

Version Change Date
v1.2.0 Factor introduced. Status: live. Scoring impl: implemented. 2026-04-25

← back to methodology