Which TLS version is used?
TLS 1.2 is preferred. For older browsers, TLS 1.1 is still allowed as a secondary option. In this case, key procedures that allow forward secrecy are preferred: ECDHE-RSA-AES128-GCM-SHA256 and DHE-RSA-AES128-GCM-SHA256. TLS 1.0 is no longer supported.