Big browsers to pull support plug for TLS 1.0 and 1.1 encryption protocols in early ’20 | Tech Industry

Breaking news from the top sources

The makers of the four biggest all said Monday that their applications will drop for the (Transport Layer Security) 1.0 and 1.1 in 2020.

“In March of 2020, Firefox will disable support for TLS 1.0 and TLS 1.1,” wrote Martin Thomson, principal engineer at Mozilla, in a post to a company blog.

Other browser developers, including Apple (Safari), Google (Chrome) and Microsoft (Edge and Internet Explorer) issued similar notices. All pegged early 2020 as the target for disabling support.

TLS is the successor to the better-known SSL (Secure Socket Layer) encryption protocol; SSL and TLS secure data communications between browser and the destination server so that criminals cannot read the traffic, and by doing so, spy on users or steal valuable information, such as log-on credentials and credit card numbers.

Both TLS 1.0 and 1.1 – the former will turn 20 in January – have been made obsolete by the later 1.2 and 1.3 protocols. TLS 1.3 was just defined in August by the Internet Engineering Task Force (IETF), the organization that develops the voluntary standards necessary for the Internet to operate. All four browsers now support TLS 1.2, and Chrome and Firefox have introduced support for the draft specification of TLS 1.3.

Most websites already support TLS 1.2 – Qualys cited 94% in its Oct. 2 survey of an Internet sample – and TSL 1.0- and 1.1-encrypted traffic is relatively rare to browsers. Microsoft claimed that less than 1% of daily connections to its Edge used 1.0/1.1, Mozilla said about 1.2% of the connections reaching the beta of Firefox 62 in August and September relied on the protocols, and Apple asserted that 1.0 and 1.1 accounted for less than 0.4% of all connections to Safari on Apple’s platforms.

You might also like More from author