Show something more useful than the number of bits in the cipher key.
For a very long time, the first element in the security section of the
Connection dialog says something like:
"Your connection to example.com
is encrypted with 128-bit encryption"
This is useless because it makes people think that 256 bits must be better than
128. But AES-256-CBC is 256 bits and it's far worse than AES-128-GCM.
Also, we had a different message for when bits <= 80, but we don't support any
of those ciphers any longer so that could never be triggered.
This change switches the message to simply say wheather the cipher suite is
decent or legacy. We use the same judgement function as the one for deciding
whether a TLS connection is acceptable for HTTP/2. Basically, >= TLS 1.2,
forward secure and using an AEAD cipher.
Since this text is two clicks down, users will probably never see it. But I'll
stop being annoyed every time I see the old message.