Microsoft postpone the deactivation of TLS 1.0/1.1

[German]Microsoft has just announced to postpone the deactivation of TLS 1.0 and TLS 1.2 for its browser products (Microsoft Edge and Internet Explorer 11), originally planned for 1st half of 2020.


Advertising

Background to the TLS topic

Transport Layer Security (TLS) is a hybrid encryption protocol for secure data transmission on the Internet. Historically, various TLS versions from 1.0 to 1.1 to 1.2 and more recently TLS 1.3 have been defined and are in use.

Since encryption in TLS 1.0 and 1.1 is no longer considered secure, the IT industry is gradually trying to switch to TLS 1.2 and/or TLS 1.3 for secure Internet connections. Microsoft is also relying on replacing TLS 1.0/1.1 (the announcement from 2018 to discontinue TLS 1.0/1.1 in Edge and Internet Explorer can be found here), but has already experienced noticeable difficulties in the past. 

Postponend plans due to Corona crisis

It was planned to deactivate TLS 1.0/1.1 in Microsoft Edge and Internet Explorer in the first half of 2020. But in the blog post Plan for change: TLS 1.0 and TLS 1.1 soon to be disabled by default, Microsoft postphoned this plan. 

  • For the new Microsoft Edge (chrome-based), TLS 1.0 and 1.1 are currently scheduled to be disabled by default at the earliest with Microsoft Edge version 84 (currently scheduled for July 2020).
  • For all supported versions of Internet Explorer 11 and Microsoft Edge Legacy (EdgeHTML-based), TLS 1.0 and TLS 1.1 will not be disabled by default until September 8, 2020.

While these protocols will continue to be available to customers and can be re-enabled as needed, Microsoft recommends that all organizations remove TLS 1.0 and TLS 1.1 as soon as practical. Microsoft points out that newer versions of the TLS protocol enable more modern cryptography. TLS 1.2 and higher are widely supported by modern browsers, such as the new Microsoft Edge.


Advertising


This entry was posted in Security and tagged , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *