Kooxda Injineerinka Internetka (IETF), oo horumarisa hab-maamuuska Internetka iyo qaab dhismeedka, ayaa daabacday RFC 8996, oo si rasmi ah u baabi'isay TLS 1.0 iyo 1.1.
Tilmaamaha TLS 1.0 waxaa la daabacay Janaayo 1999. Todoba sano ka dib, cusboonaysiinta TLS 1.1 ayaa la sii daayay iyada oo ay weheliso horumarro xagga amniga ah oo la xidhiidha jiilka bilawga vectors iyo suufka. Marka loo eego adeega SSL Pulse, laga bilaabo Janaayo 16, borotokoolka TLS 1.2 waxaa taageera 95.2% shabakadaha u oggolaanaya sameynta xiriiro sugan, iyo TLS 1.3 - 14.2%. Xidhiidhada TLS 1.1 waxa aqbala 77.4% ee goobaha HTTPS, halka xidhiidhka TLS 1.0 la aqbalay 68%. Ku dhawaad ββ21% 100 kun ee goobood ee ugu horreeya ayaa ka muuqda darajada Alexa weli ma isticmaalaan HTTPS.
Dhibaatooyinka ugu waaweyn ee TLS 1.0 / 1.1 waa taageero la'aanta ciphers casriga ah (tusaale, ECDHE iyo AEAD) iyo joogitaanka qeexitaanka shuruudaha si loo taageero ciphers duug ah, taas oo la isku halleyn karo oo la isweydiiyo heerka horumarka hadda jira. Tignoolajiyada xisaabinta (tusaale ahaan, taageerada TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA ayaa looga baahan yahay hubinta hufnaanta iyo xaqiijinta MD5 iyo SHA-1 ayaa la isticmaalaa). Taageerada algorithms-yada duugoobay ayaa durba horseeday weeraro sida ROBOT, DOORAN, BEAST, Logjam iyo FREAK. Si kastaba ha ahaatee, dhibaatooyinkan si toos ah looma tixgalinin baylahda hab-maamuuska waxaana lagu xalliyay heerkii fulintooda. Hab-maamuuska TLS 1.0/1.1 laftooda ayaa ka maqan baylahda halista ah ee looga faa'iidaysan karo in lagu qaado weeraro la taaban karo.
Source: opennet.ru