@Robert Kemeny,
Also,
ECC or ECDSA are not support, at this moment Imperva use all of our certificates are RSA ones.Currently we don't support it as part of CWAF and there is no ETA. We are checking to see if it's possible to use custom cert and not from Imperva.
Here is some documentation that could help
Web Protection - SSL/TLS
Supported cipher suites
TLS 1.3
TLS_AES_128_GCM_SHA256
TLS_CHACHA20_POLY1305_SHA256
TLS_AES_256_GCM_SHA384
TLS 1.2
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
TLS_RSA_WITH_AES_128_GCM_SHA256
TLS_RSA_WITH_AES_256_GCM_SHA384
TLS_RSA_WITH_AES_128_CBC_SHA256
TLS_RSA_WITH_AES_256_CBC_SHA256
TLS_RSA_WITH_AES_128_CBC_SHA
TLS_RSA_WITH_AES_256_CBC_SHA
TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
------------------------------
Christopher Detzel
Community Manager
Imperva
------------------------------
Original Message:
Sent: 05-01-2020 14:50
From: Robert Kemeny
Subject: Cloud WAF Certificate
Does Cloud WAF support Elliptical Curve Cryptography on customer supplied certificates when onboarding a website ?
#CloudWAF(formerlyIncapsula)
------------------------------
Robert Kemeny
NCSi
Bountiful UT
------------------------------