Internet Engineering Task Force (IETF), e nts'etsang liprothokholo tsa Marang-rang le meaho, e phatlalalitse RFC 8996, e nyenyefatsang ka molao TLS 1.0 le 1.1.
Tlhaloso ea TLS 1.0 e phatlalalitsoe ka Pherekhong 1999. Lilemo tse supileng hamorao, ntlafatso ea TLS 1.1 e ile ea lokolloa ka lintlafatso tsa ts'ireletso tse amanang le tlhahiso ea li-vector tse qalang le padding. Ho ea ka tšebeletso ea SSL Pulse, ho tloha ka la 16 January, protocol ea TLS 1.2 e tšehetsoa ke 95.2% ea liwebsaete tse lumellang ho thehoa ha likhokahano tse sireletsehileng, le TLS 1.3 - ka 14.2%. Likhokelo tsa TLS 1.1 li amoheloa ke 77.4% ea libaka tsa HTTPS, ha likhokahano tsa TLS 1.0 li amoheloa ke 68%. Hoo e ka bang 21% ea libaka tsa pele tse likete tse 100 tse bontšitsoeng boemong ba Alexa li ntse li sa sebelise HTTPS.
Mathata a ka sehloohong a TLS 1.0 / 1.1 ke ho hloka tšehetso bakeng sa li-ciphers tsa morao-rao (mohlala, ECDHE le AEAD) le ho ba teng ha tlhaloso ea tlhokahalo ea ho tšehetsa li-ciphers tsa khale, ho tšepahala ha tsona ho belaelloang sethaleng sa hona joale sa tsoelo-pele. ea theknoloji ea khomphutha (mohlala, tšehetso bakeng sa TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA ea hlokahala bakeng sa ho lekola botšepehi le netefatso ea MD5 le SHA-1 li sebelisoa). Ts'ehetso ea li-algorithms tsa khale e se e lebisitse litlhaselong tse kang ROBOT, DROWN, BEAST, Logjam le FREAK. Leha ho le joalo, mathata ana ha aa ka a nkoa ka ho toba e le bofokoli ba protocol 'me a rarolloa boemong ba ts'ebetsong ea eona. Liprothokholo tsa TLS 1.0/1.1 ka botsona ha li na bofokoli bo boholo bo ka sebelisoang hampe ho etsa litlhaselo tse sebetsang.
Source: opennet.ru