Como ingxenye yenhlangano ehlanganisiwe phakathi kwamagama amane amakhulu kubuchwepheshe, izivumelwano ezindala zokuphepha i-TLS 1.0 no-1.1 zizosuswa eSafari, Edge, Internet Explorer, Firefox nakuChrome ngo-2020.
I-Apple, iMicrosoft, iMozilla, neGoogle bahlanganyele ukuhlanza i-inthanethi yalezi zinqubo ezindala nezinamaphutha, beqaphela ukuthi iningi labantu selithuthele kwi-TLS 1.2, uma kungenjalo i-TLS 1.3.
Yize amaphesenti angama-94 amasayithi asevele ahambisana nenguqulo 1.2, isikhathi sokuphazanyiswa ezinyangeni eziyi-18 ezizayo sizonikeza wonke umuntu ithuba lokuthi abambe.
Abathuthukisi beziphequluli iFirefox, iChannel, iEdge neSafari baxwayise ngokuqedwa okuseduze kokusekelwa kwezivumelwano ze-TLS 1.0 kanye ne-TLS 1.1:
- KuFirefox, ukwesekwa kwe-TLS 1.0 / 1.1 kuzonqanyulwa ngoMashi 2020, kepha lezi zinqubo zizokhubazeka ekuqaleni kwezilingo nezinguqulo zasebusuku.
- Ku-Chrome, ukuxhaswa kwe-TLS 1.0 / 1.1 kuzonqanyulwa kusukela kunguqulo ye-Google Chrome engu-81, elindelwe ngoJanuwari 2020.
- Ngenkathi iku-Google Chrome inguqulo 72, ezokhishwa ngoJanuwari 2019, lapho kuvulwa amasayithi ane-TLS 1.0 / 1.1, kuzovezwa isexwayiso esikhethekile ngokusebenzisa inguqulo ephelelwe yisikhathi ye-TLS. Amasethingi avumela ukubuyisa ukuxhaswa kwe-TLS 1.0 / 1.1 azohlala kuze kube nguJanuwari 2021.
- Esipheqululini sewebhu seSafera nenjini yeWebKit, ukuxhaswa kweTLS 1.0 / 1.1 kuzonqanyulwa ngoMashi 2020.
- Ngenkathi usesipheqululini sewebhu seMicrosoft Edge naku-Internet Explorer 11, ukususwa kwe-TLS 1.0 ne-TLS 1.1 kulindeleke engxenyeni yokuqala ka-2020.
Incazelo ye-TLS 1.0 yakhishwa ngoJanuwari 1999. Eminyakeni eyisikhombisa kamuva, isibuyekezo se-TLS 1.1 sakhishwa ngezithuthukisi zezokuphepha ezihlobene nokwenziwa kwama-vector okuqalisa kanye nama-veding padding.
Okwamanje, i-Internet Engineering Task Force (IETF), ebandakanyeka ekwakhiweni kwamaphrothokholi we-Intanethi nokwakhiwa kwezakhiwo, Isivele ishicilele okusalungiswa okucacisa ukuthi imigomo ye-TLS 1.0 / 1.1 ayisasebenzi.
Ngemuva kweminyaka engama-20 lapho isemi khona kunjalo esinye sezizathu okulindeleke ukuthi i-IETF yenze (I-Internet Engineering Task Force) yehlisa ngokusemthethweni izivumelwano ngasekupheleni konyaka, yize kungakenziwa simemezelo okwamanje.
Iningi labasebenzisi namaseva selivele lisebenzisa i-TLS 1.2+
Iphesenti lezicelo ezisebenzisa i-TLS 1.0 kuwebhu lingu-0,4% wabasebenzisi be-Chrome ne-1% yabasebenzisi be-Firefox.
Ezingxenyeni ezinkulu eziyizigidi ezi-2 ezilinganiswe yi-Alexa, ama-1.0% kuphela anqunyelwe ku-TLS 0.1 no-1.1% - TLS XNUMX.
Ngokwezibalo zeCloudflare, cishe i-9,3% yezicelo ngenethiwekhi yokulethwa kokuqukethwe kweCloudflare zenziwa kusetshenziswa i-TLS 1.0. I-TLS 1.1 isetshenziswa kumacala angu-0,2%.
Ngokusho kwenkampani yesevisi yedatha ye-SSL iPulse Qualys TLS 1.2 protocol support 94% yamawebhusayithi, evumela ukusethwa kokuxhumeka okuphephile.
“Iminyaka engamashumi amabili yisikhathi eside ukuthi ubuchwepheshe bezokuphepha buhlale bungashintshi. Yize singabazi ubucayi obubonakalayo ngokusetshenziswa kwethu okuvuselelwe kwe-TLS 1.0 ne-TLS 1.1, kunokusetshenziswa okuvela engcupheni okuvela eceleni, ”kusho uKyle. I-Pflug, umphathi wohlelo oluphakeme eMicrosoft Edge.
Idatha yeMozilla eqoqwe nge-telemetry ku IFirefox ikhombisa ukuthi kuphela ukuxhumana okuvikelekile okungu-1.11% kusetshenziswa umthetho olandelwayo we-TLS 1.0. Ku-TLS 1.1, lesi sibalo singu-0.09%, se-TLS 1.2 - 93.12%, se-TLS 1.3 - 5.68%.
Izingqinamba ezinkulu nge-TLS 1.0 / 1.1 ukungabikho kokusekelwa kwama-cipher anamuhla (isb. I-ECDHE ne-AEAD) kanye nesidingo sokusekela ama-cipher amadala, ukuthembeka kwawo okubuzwa esigabeni samanje sokuthuthuka kwamakhompiyutha (isb., Ukusekelwa kwe-TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA kuyadingeka ukuqinisekisa).
Ukusekelwa kwama-algorithms wefa sekuvele kuholele ekuhlaselweni okufana neROBOT, DROWN, BEAST, Logjam, neFREAK.
Kodwa-ke, lezi zingqinamba bezingezona izingcuphe ngqo zeprotocol futhi zivaliwe ezingeni lokuqalisa kwazo.
Amaphrothokholi we-TLS 1.0 / 1.1 awanakho ukuba sengcupheni okubucayi okungasetshenziselwa ukwenza ukuhlasela okusebenzayo.