igor (ico) wrote,
igor
ico

It's time for TLS 1.0 and 1.1 to die

https://tools.ietf.org/html/draft-moriarty-tls-oldversions-diediedie-00

.. clients MUST NOT send a ClientHello with ClientHello.client_version set to {03,01}. Similarly, servers MUST NOT send a ServerHello with ServerHello.server_version set to {03,01}. Any party receiving a Hello message with the protocol version set to {03,01} MUST respond with a 'protocol_version' alert message and close the connection.
Tags: it, security
Subscribe
  • Post a new comment

    Error

    default userpic

    Your reply will be screened

    Your IP address will be recorded 

    When you submit the form an invisible reCAPTCHA check will be performed.
    You must follow the Privacy Policy and Google Terms of use.
  • 0 comments