Sign In

Съвети


Deprecating TLSv1.0 and TLSv1.1


CERT Bulgaria reminds users and administrators that browsers stop the support of TLS 1.0 and TLS 1.1 as follow:

  • Google Chrome – in January 2020;
  • Mozilla Firefox - in March of 2020;
  • Microsoft Edge and IE - by the first half of 2020;
  • Microsoft Office 365 - as of October 31, 2018
  • Safari/ Webkit - in March of 2020.

    Additionally, it is expected the Internet Engineering Task Force (IETF) to formally deprecate TLS 1.0 and 1.1 later this year, at which point protocol vulnerabilities in these versions will no longer be addressed by the IETF

    As there are no fixes or patches that can adequately fix SSL or deprecated TLS, it is critically important that organizations upgrade to TLS 1.2 and newer as soon as possible.

CERT Bulgaria recommends users and administrators to upgrade to TLS 1.2 and other security alternatives as soon as possible because there will be no fixes or updates to adequately correct SSL or rejected TLS, which is critical to information security.


https://www.chromestatus.com/feature/5654791610957824

https://blog.mozilla.org/security/2018/10/15/removing-old-versions-of-tls/

https://blogs.windows.com/msedgedev/2018/10/15/modernizing-tls-edge-ie11/#C6MCdCVjI5aseR14.97

https://support.microsoft.com/en-us/help/4057306/preparing-for-tls-1-2-in-office-365

https://webkit.org/blog/8462/deprecation-of-legacy-tls-1-0-and-1-1-versions/

https://tools.ietf.org/html/draft-ietf-tls-oldversions-deprecate-00

24/04/2019

NEW VIRUSES RSS
VULNERABILITIES RSS