Apple partners with Google, Microsoft and Mozilla to make 20-year-old Web security protocol obsolete



[ad_1]

Apple associates with Google, Microsoft and Mozilla to advise against the use of TLS 1.0 and 1.1 in early 2020. TLS stands for Transport Layer Security and is used to protect web traffic. ArsTechnica was the first to report on this deal, while Apple's WebKit blog also detailed the change.

Sylvania HomeKit Light Strip

In a WebKit blog post, Apple's Secure Transport team explained that TLS ensures the confidentiality and integrity of data transmitted between clients and servers:

Transport Layer Security (TLS) is an essential security protocol used to protect web traffic. It ensures the confidentiality and integrity of data in transit between clients and servers that exchange information (often sensitive). To best protect this data, it is important to use modern and more secure versions of this protocol.

TLS 1.0 was released for the first time in January 1999, followed by TLS 1.1 in 2006. More recently, TLS 1.3 was finalized in August.

Apple's Secure Transport team then explains that the latest version of TLS 1.2 provides "modern Web-ready security" and is already standard on Apple platforms. Currently, TLS 1.2 accounts for 99.6% of TLS connections made from Safari, according to Apple. On a larger scale, about 94% of sites support TLS 1.2.

The time has come to make this transition. Properly configured for App Transport Security (ATS) compliance, TLS 1.2 provides security for today's Web. This is the standard on Apple platforms and accounts for 99.6% of TLS connections made from Safari. TLS 1.0 and 1.1 – dating back to 1999 – account for less than 0.36% of all connections.

Safari on macOS and iOS will completely drop support for TLS 1.0 and 1.1 in March 2020. Microsoft, Google, and Firefox are expected to drop support around the same time.

3D boom for Mac


Subscribe to 9to5Mac on YouTube for more information on Apple:

[ad_2]
Source link