TLS 1.2 is a prerequisite for HTTP/2, which can improve site performance. Our telemetry shows that many sites already use TLS 1.2 or higher ( Qualys says 94%). TLS versions for all connections established by Firefox Beta 62, August-September 2018 Our telemetry shows that only 0.1% of connections use TLS 1.1.
TLS 1.1 only addresses a limitation of TLS 1.0 that can be addressed in other ways.
We will disable TLS 1.1 at the same time. A draft document describes the technical reasons in more detail. The Internet Engineering Task Force (IETF) no longer recommends the use of older TLS versions. Most importantly, TLS 1.0 does not support modern cryptographic algorithms. Though we are not aware of specific problems with TLS 1.0 that require immediate action, several aspects of the design are neither as strong or as robust as we would like given the nature of the Internet today. In that time, we have collectively learned a lot about what it takes to design and build a security protocol. In that time, TLS has protected billions – and probably trillions – of connections from eavesdropping and attack. TLS 1.0 will be 20 years old in January 2019. On the Internet, 20 years is an eternity. In March of 2020, Firefox will disable support for TLS 1.0 and TLS 1.1.
0 kommentar(er)
