Manufacturers of the four largest browsers announced on Monday that their applications will discontinue TLS (Transport Layer Security) 1.0 and 1.1 encryption protocols in early 2020.
"In March 2020, Firefox will support TLS 1.0 and TLS 1.1," wrote Martin Thomson, senior engineer at Mozilla, in a post on a company blog.
Other browser developers, including Apple (Safari), Google (Chrome), and Microsoft (Edge and Internet Explorer) have published similar evidence. Established Target for Disabling Support in Early 2020
TLS is the successor to the more popular SSL (Secure Socket Layer) encryption protocol; SSL and TLS secure data communication between the browser and the destination server so that criminals can not read the traffic, thereby spying on users or stealing valuable information such as credentials and credit card numbers.
Both TLS 1
Most Web sites already support TLS 1.2 – Qualys cites 94% in its October 2 survey for an Internet sample – and TSL 1.0 and 1.1 encrypted traffic is relatively rare for browsers. Microsoft claims that using less than 1% of the daily connections to its Edge 1.0 / 1.1, Mozilla said that about 1.2% of the connections reached the beta of Firefox 62 in August and September was based on the protocols, and Apple claimed that 1.0 and 1.1 accounted for less than 0.4% of all links to Safari on Apple's platforms.
Nevertheless, browser builders plan to give website owners considerable time before unplugging the plug. "We understand that updating something as basic as TLS can take some time," said Mozillas Thomson. "This change affects a large number of websites, so we are making this announcement so far ahead of the move date in March 2020."
Each developer will follow his own schedule, even if the final data for the punching process coincides.
Apple will remove support for TLS 1.0 and 1.1 from Safari in March 2020 via updates for macOS and iOS
Google will begin with the removal of logs in Chrome 72 that are being shipped to be January 2019; At this point, alerts appear in the DevTools Console. Support for TLS 1.0 and 1.1 will be phased out on Chrome 81, which is expected to be released in March 2020. "(But) this will affect users in early release channels as of January 2020," warned David Benjamin, a Google engineer.
Benjamin added Companies could extend TLS 1.0 or 1.1 support to January 2021 by setting the SSLVersionMin policy to "tls1.0" or "tls1.1".
Microsoft was less transparent than the competition, saying only that the protocols would be disabled by default "in the first half of 2020". The action would run in Edge, the Windows 10 only browser, and Internet Explorer 11 (IE11), which will now be placed in a legacy role.
Mozilla will receive TLS 1.0 / 1.1 support from Firefox in March 2020. But like Google, the developer warned users that the change would reach the preview builds – Beta, Developer and Nightly – sooner. "We will post specific data if we have more detailed plans," Thomson said.