[ad_1]
By Mikey Campbell
Tuesday, October 16, 2018, at 18:42 Eastern Time (9:42 pm ET)
Four titans from the information technology industry, Apple, Google, Microsoft and Mozilla, announced this week their intention to upgrade from Transport Layer Security (TLS) 1.0 and 1.1 to modern, more secure versions. of the protocol.
In a WebKit blog post, Apple's software engineer, Christopher Wood, advocated for the depreciation of TLS 1.0 and 1.1 in favor of version 1.2 and version 1.3 recently finalized.
Wood, which specializes in public key infrastructures and cryptographic services, defines TLS as an essential Internet security protocol for protecting Web traffic when it moves between clients and servers. The tool "ensures the confidentiality and integrity" of often sensitive data, but earlier versions of TLS go back to 1999.
To protect users against the potential exploitation of vulnerabilities such as the BEAST browser and FREAK "Man-in-the-Middle" attacks, Wood suggests moving away from TLS 1.0 and 1.1. Specifically, the engineer stated that TLS 1.2 offers "modern web-friendly" security.
According to Wood, Apple would advise against Safari's support of TLS 1.0 and 1.1 in future iOS and macOS updates in March 2020. Apple is currently using TLS 1.2 as a standard and 99.6% TLS connections from Safari rely on modern protocol.
ArsTechnica reported on the change coming sooner today.
As part of the industry's efforts to move away from older versions of TLS, Google, Chrome, Microsoft Edge and Mozilla, Firefox, will also cease to be supported during the same period. The Safari alternatives consider that the metrics largely conform to those provided by Apple, with Firefox recording the highest percentage of legacy TLS usage with 1.2% of all secure connections.
[ad_2]
Source link
