В Firefox ta tsohuwa goyan bayan ka'idojin TLS 1.0 da TLS 1.1 (saitin security.tls.version.min an saita shi zuwa 3, wanda ya saita TLS 1.2 a matsayin mafi ƙarancin sigar). A cikin tabbataccen sakewa, ana shirin kashe TLS 1.0/1.1 a cikin Maris 2020. A cikin Chrome, tallafin TLS 1.0/1.1 za a yi watsi da shi a cikin Chrome 81, ana tsammanin a cikin Janairu 2020.
An buga ƙayyadaddun TLS 1.0 a cikin Janairu 1999. Shekaru bakwai bayan haka, an fitar da sabuntawar TLS 1.1 tare da inganta tsaro masu alaƙa da haɓakar ƙwaƙƙwaran ƙaddamarwa da padding. A halin yanzu, kwamitin IETF (Internet Engineering Task Force), wanda ke da hannu wajen haɓaka ka'idojin Intanet da gine-gine.
daftarin ƙayyadaddun ƙayyadaddun ƙayyadaddun ƙa'idodin TLS 1.0/1.1. A cewar sabis tun daga ranar 3 ga Satumba, ƙa'idar TLS 1.2 tana tallafawa da kashi 95.8% na gidajen yanar gizo waɗanda ke ba da izinin kafa amintaccen haɗin gwiwa, da TLS 1.3 - ta 17.7%. Ana karɓar haɗin TLS 1.1 da kashi 75.5% na rukunin yanar gizon HTTPS, yayin da haɗin TLS 1.0 ke karɓa da 65.5%.
Babban matsalolin TLS 1.0/1.1 sune rashin tallafi ga ciphers na zamani (misali, ECDHE da AEAD) da kuma buƙatu don tallafawa tsofaffin cibiyoyi, waɗanda ake tambayar amincin su a halin yanzu na haɓaka fasahar sarrafa kwamfuta (misali. , ana buƙatar tallafi don TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA, ana amfani da MD5 da SHA don tabbatar da gaskiya da tabbatarwa -1). Taimakawa ga tsoffin algorithms sun riga sun haifar da hare-hare irin su
, , , и . Koyaya, ba a yi la'akari da waɗannan matsalolin kai tsaye ga raunin yarjejeniya ba kuma an warware su a matakin aiwatar da su. Ka'idojin TLS 1.0/1.1 da kansu ba su da lahani masu mahimmanci waɗanda za a iya amfani da su don kai hare-hare masu amfani.
source: budenet.ru