With the release of Chrome (and Edge) version 92, a new feature called CECPQ2 was introduced, hardening the TLS 1.3 keychain against brute-force attacks from quantum computers. Unfortunately, this breaks many SSL scanning (IDS) implementations on security appliances (such as firewalls). A workaround is to either temporarily disable scanning or disable CECPQ2 in the browser through a group policy (or registry key).
To turn off CECPQ2 for Chromium, create the following registry keys:
Chrome:
HKEY_LOCAL_MACHINE\Software\Policies\Google\Chrome "CECPQ2Enabled"=dword:00000000
Edge:
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Edge "CECPQ2Enabled"=dword:00000000
A browser restart is sufficient for the change to take effect.
| « ‹ | March 2025 | › » | ||||
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
| 1 | ||||||
| 2 | 3 | 4 | 5 | 6 | 7 | 8 |
| 9 | 10 | 11 | 12 | 13 | 14 | 15 |
| 16 | 17 | 18 | 19 | 20 | 21 | 22 |
| 23 | 24 | 25 | 26 | 27 | 28 | 29 |
| 30 | 31 | |||||
