Github user robertdale commented on the issue: https://github.com/apache/tinkerpop/pull/912 @k4rthikr That's a little deeper than I want to get into. `sslCipherSuites` provides a whitelist. Whitelists are always preferred over blacklists. If this one were blacklisted, there are probably 10 others that were missed. I also don't want to imply that these are managed and updated by us. There are just too many and changes more often than say TLS protocol version. IMO, the scope of this work was to set reasonable defaults that made Gremlin Server+Client more secure and raise awareness to the user. It will be up to the user to use good ciphers, good key lengths, etc.
---