Lub Internet Engineering Task Force (IETF), uas tsim Internet raws tu qauv thiab architecture, tau luam tawm RFC 8996, officially deprecating TLS 1.0 thiab 1.1.
TLS 1.0 specification tau luam tawm thaum Lub Ib Hlis 1999. Xya xyoo tom qab, qhov hloov tshiab TLS 1.1 tau tso tawm nrog kev txhim kho kev ruaj ntseg ntsig txog cov cim kev pib vectors thiab padding. Raws li kev pabcuam SSL Pulse, txij li Lub Ib Hlis 16, TLS 1.2 raws tu qauv tau txais kev txhawb nqa los ntawm 95.2% ntawm cov vev xaib uas tso cai rau kev tsim cov kev sib txuas ruaj ntseg, thiab TLS 1.3 - los ntawm 14.2%. TLS 1.1 kev sib txuas tau txais los ntawm 77.4% ntawm HTTPS qhov chaw, thaum TLS 1.0 kev sib txuas tau txais los ntawm 68%. Kwv yees li ntawm 21% ntawm thawj 100 txhiab qhov chaw tau cuam tshuam hauv Alexa qeb duas tseem tsis siv HTTPS.
Cov teeb meem tseem ceeb ntawm TLS 1.0/1.1 yog qhov tsis muaj kev txhawb nqa rau cov ciphers niaj hnub (piv txwv li, ECDHE thiab AEAD) thiab qhov muaj nyob rau hauv cov lus qhia ntawm qhov yuav tsum tau txhawb cov qub ciphers, qhov kev ntseeg siab ntawm cov lus nug nyob rau theem tam sim no ntawm kev txhim kho. ntawm kev siv thev naus laus zis (piv txwv li, kev txhawb nqa rau TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA yuav tsum tau siv rau kev kuaj xyuas kev ncaj ncees thiab kev lees paub MD5 thiab SHA-1). Kev them nyiaj yug rau cov algorithms tsis tu ncua tau ua rau muaj kev tawm tsam xws li ROBOT, DROWN, BEAST, Logjam thiab FREAK. Txawm li cas los xij, cov teeb meem no tsis raug txiav txim ncaj qha raws tu qauv qhov tsis zoo thiab raug daws nyob rau theem ntawm nws qhov kev siv. TLS 1.0/1.1 cov txheej txheem lawv tus kheej tsis muaj qhov tsis zoo uas tuaj yeem siv los ua qhov kev tawm tsam.
Tau qhov twg los: opennet.ru