Chrome, Firefox, Edge and Safari Plans to Disable TLS 1.0 and 1.1 in 2020
https://thehackernews.com/2018/10/web-browser-tls-support.html
Major companies announce they are killing TLS 1.0 and TLS 1.1 in 2020. We should already be aware of the reason behind the murder of previous TLS version but I found their statistics on TLS 1.0 and 1.1 traffic to be enlightening. I really didn’t expect such low numbers.
Today 94 percent of sites already support TLS 1.2, while only less than one percent of daily connections in Microsoft Edge are using TLS 1.0 or 1.1.
Apple also says TLS 1.2 is the standard on its platforms and represents 99.6 percent of TLS connections made from Safari, while TLS 1.0 and 1.1 account for less than 0.36 percent of all connections.
Google says that today only 0.5 percent of HTTPS connections made by Chrome use TLS 1.0 or 1.1.
You can also manually disable older TLS versions on Google Chrome by opening Settings → Advanced Settings → Open Proxy Settings → Click ‘Advanced’ Tab → Under ‘Security’ section uncheck TLS 1.0 and 1.1 and then save.
Those are some pretty small percentages.
Haitao Huang says
There are four TLS versions have been developed, TLS 1.0, 1.1, 1.2, and 1.3. TLS 1.2 is the most used TLS version.
TLS 1.2 has several major improvements compared to the previous version, including:
• The MD5/SHA-1 combination in the pseudorandom function (PRF) is replaced with SHA-256 with the option to use the cipher-suite-specified PRFs.
• The MD5/SHA-1 combination in the digitally-signed element is replaced with a single hash which is negotiated during the handshake.
• Improvements to the client’s and server’s ability to specify the accepted hash and signature algorithms.
• Support for authenticated encryption for other data modes
• TLS extensions and AES cipher suites were added.