Web browsers sharpen knives for TLS 1.0, 1.1, tell protocols to dig their own graves for 2019

www.theregister.co.uk | 10/16/2018 | Staff
bab_ohhbab_ohh (Posted by) Level 3
Click For Photo: https://regmedia.co.uk/2015/09/22/american-psycho.jpg

Sysadmins and netizens, it's time to get serious about killing off old, buggy and insecure versions of Transport Layer Security (TLS) – the encryption used to secure connections to HTTPS websites like your bank, El Reg, and so on.

For one thing, web browser makers are laying out coordinated deprecation plans, meaning if your website is still using TLS 1.0 or 1.1, and nothing more recent, browsers will soon flag up your site as insecure or complain they are unable to connect.

Internet - Engineering - Task - Force - Funeral

The Internet Engineering Task Force has been considering when to hold the funeral of TLS 1.0, which will be 20 years old in January 2019, as well as a burial for TLS 1.1, since June this year. Its Internet-Draft on the matter is expected to formalize the 'net standards body's “die die die” recommendation later this year. When the draft progresses to standard status, the IETF will no longer fix new protocol vulnerabilities in TLS 1.0 and 1.1.

Microsoft noted on Monday that fewer than...
(Excerpt) Read more at: www.theregister.co.uk
Wake Up To Breaking News!
"Those who stand for nothing fall for anything." - Alexander Hamilton
Sign In or Register to comment.

Welcome to Long Room!

Where The World Finds Its News!