I-Internet Engineering Task Force (IETF), ethuthukisa izivumelwano ze-inthanethi nezakhiwo, ishicilele i-RFC 8996, yehlisa ngokusemthethweni i-TLS 1.0 kanye ne-1.1.
Ukucaciswa kwe-TLS 1.0 kwashicilelwa ngoJanuwari 1999. Eminyakeni eyisikhombisa kamuva, isibuyekezo se-TLS 1.1 sakhululwa ngokuthuthukiswa kokuvikeleka okuhlobene nokukhiqizwa kwama-vector okuqalisa kanye nama-padding. Ngokusho kwesevisi ye-SSL Pulse, kusukela ngoJanuwari 16, iphrothokholi ye-TLS 1.2 isekelwa amawebhusayithi angu-95.2% avumela ukusungulwa kokuxhumana okuphephile, kanye ne-TLS 1.3 - ngo-14.2%. Ukuxhumeka kwe-TLS 1.1 kwamukelwa ngu-77.4% wamasayithi e-HTTPS, kuyilapho ukuxhumeka kwe-TLS 1.0 kwamukelwa ngo-68%. Cishe u-21% wezindawo zokuqala eziyinkulungwane eziyi-100 ezivezwe kusezingeni le-Alexa namanje awakasebenzisi i-HTTPS.
Izinkinga eziyinhloko ze-TLS 1.0/1.1 ukuntuleka kokusekelwa kwama-ciphers esimanje (isibonelo, i-ECDHE ne-AEAD) kanye nokuba khona ekucacisweni kwemfuneko yokusekela ama-ciphers amadala, ukuthembeka kwawo okungatshazwa esigabeni samanje sokuthuthuka. yobuchwepheshe bekhompyutha (isibonelo, usekelo lwe-TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA luyadingeka ukuze kuhlolwe ubuqotho kanye nokufakazela ubuqiniso kwe-MD5 ne-SHA-1 kuyasetshenziswa). Ukusekelwa kwama-algorithms aphelelwe yisikhathi sekuvele kuholele ekuhlaselweni okufana ne-ROBOT, DROWN, BEAST, Logjam ne-FREAK. Kodwa-ke, lezi zinkinga azizange zibhekwe ngokuqondile njengobungozi bephrothokholi futhi zaxazululwa ngezinga lokusetshenziswa kwayo. Amaphrothokholi e-TLS 1.0/1.1 ngokwawo awanawo ubungozi obubalulekile obungasetshenziswa ukuze kuhlaselwe okwenzekayo.
Source: opennet.ru