nonPFS

NonPFS, short for non-forward secrecy, refers to cryptographic configurations or cipher suites in protocols such as TLS that do not provide forward secrecy. In practice, this means the session keys securing a connection can be derived from long-term keys rather than from ephemeral, per-session keys. As a result, if the server’s private key is compromised, past communications protected by nonPFS can potentially be decrypted.

Concretely, nonPFS occurs when a handshake uses static key exchange, such as RSA key exchange, instead of

NonPFS is commonly associated with older TLS configurations and cipher suites, for example TLS_RSA_WITH_AES_128_GCM_SHA256 or similar

Mitigation and best practices include disabling non-PFS ciphers, enabling PFS-capable suites (such as ECDHE_RSA, ECDHE_ECDSA, or