So as I am using Firefox for years now, with a brightened attention to security issues I want to share some urgent necessities to the Mozilla Foundation.
1) An "Enhanced Strict TLS mode" in the browser. Which no longer allows to call up any plain http (unencrypted) content. Including any unencrypted cookies e.g. , Should also issue a warning on HSTS not being implemented on a website (as this may affect session integrity). Avoidance of websites having anything enabled which falls under weak security. (Requirement limits : RFC 8446)
2) TLS implementation should soon make a further shift towards tightened security in general. Which means: Avoidance/removal of plain RSA Handshakes and as well avoidance/removal of CBC mode ciphers from the browser itself. "ASAP". Alongside with it, TLS 1.2 and TLS 1.3 only being supported with respect to RFC 8446. Websites not providing it, or if not compliant (older TLS 1.2 standard) should be marked as "potentially insecure" (weak security). Warning on EC/DH/RS handshakes not having at least 2048 bits strength.
3) Known commercial websites with money transactions should actively and only be browsed using the strongest-available ciphermodes and use TLS 1.3 everywhere if and whenever possible. Which is merely a default on Server TLS 1.3. In TLS 1.2 however, the browser should actively take care of it especially. Active Lockout (supression) of insecure/weak secure content in such sites. RFC 8446.