Microsoft announced this week that future versions of Windows (client and server) will no longer have TLS 1.0 and TLS 1.1 enabled. This step is designed to encourage you to use modern security mechanisms for your organization.
TLS (Transport Layer Security) is an encryption mechanism designed to prevent eavesdroppers from reading your data in transit, including e-mail, passwords, and credit card numbers. It is absolutely preferred over the aging SSLH (Secure Socket Layer) which it was meant to replace. SSL 3.0 was released in 1996 and does have known security issues.
With that said, so many people who are not cybersecurity specialists may know that TLS is preferred over SSL, but do not realize there have been several versions of it. TLS 1.0 was introduced in 2006, and was meant to be deprecated by 2020. TLS 1.1 was released in 2008; anyone who has ever used a computer knows that technology does not stand still, and there are few fifteen-year-old technologies that are still viable solutions. Yet without a decent understanding of the standards they might not realize that what they once thought to be secure is not, and the importance of taking the time to stay current.
TLS 1.2 was released in 2008; TLS 1.3 is the latest and greatest, released in 2018.
If you have a system that absolutely requires these older standards then you can still enable them by modifying the registry, but unless you have no alternative then it is time to join us in the modern era and move onto TLS 1.3.
If you are a Microsoft 365 customer then you may be relieved to know that these obsolete protocols were retired from most of that platform on January 31, 2022.
The World According to Mitch 
Leave a comment