Microsoft to disable TLS 1.0, 1.1 for Edge and Internet Explorer in first-half of 2020


Microsoft Edge

Microsoft has announced it will be disabling ‘Transport Layer Security’ (TLS) 1.0 and 1.1 by default in supported versions of Microsoft Edge and Internet Explorer 11 in the first half of 2020. This change is in line with announcements from Apple, Google, and Mozilla to supports more performant, secure connections.

January 2019 marks the 20th anniversary of TLS 1.0 that encrypts and authenticates secure connections across the web. The successor versions of TLS have grown more advanced, culminating with the publication of TLS 1.3, which is currently in development for a future version of Microsoft Edge.

The company says that moving to newer versions helps ensure a more secure Web for everyone. Additionally, it expects the IETF to formally deprecate TLS 1.0 and 1.1 later this year, at which point protocol vulnerabilities in these versions will no longer be addressed by the IETF. The newer versions enable more modern cryptography and are broadly supported across modern browsers.

The company says that most sites should not be impacted by this change and is allowing the small portion of remaining sites sufficient time to upgrade to a newer version.

Source