Microsoft calls time on legacy TLS in Windows, breaking its own artifacts in the process • Log

Microsoft has reminded users that TLS 1.0 and 1.1 will soon be disabled by default in Windows.

Although home Windows users are unlikely to notice many issues, Microsoft to caution That choppy waters could await institutional officials. He. She published A non-exhaustive list of requests that it said were “expected to be broken.”

Top of the list is SQL Server. The 2014 and 2016 versions, both of which are still in support, May require updates. SQL Server 2012, currently available Extended security updatesis also on the list.

Finally, SQL Server 2008 R2 pulled out of the Extended Security Updates in July, although Microsoft published instructions for adding TLS 1.2 support.

The list of apps that Microsoft expects to be broken also includes version 5.1.7 of Apple’s Safari browser for Windows, and several security apps, without a hint of irony.

like reg Readers know that Transport Layer Security (TLS) is a protocol for encrypting client-server communications that dates back to the last century. The current standard, which has been in use since 2018, is TLS 1.3. TLS 1.2 was published in 2008, and both represent significant improvements over their predecessors.

Microsoft’s desire to eliminate deprecated versions of TLS has been well documented. However, the requirement to maintain backward compatibility has prevented the company from discontinuing the technology until now.

“We have been tracking TLS usage for several years and believe TLS 1.0 and TLS 1.1 usage data is low enough to work,” the Redmond software giant said.

Although the company may move in the coming weeks and months — Windows Insiders will be the first to disable TLS 1.0 and 1.1 by default starting in September, followed by future Windows releases — the option to re-enable the protocols will remain.

See also  The cheaper and thinner Samsung Galaxy Z Fold 6 could be cancelled

However, the task will not be easy for administrators using this legacy application who simply have to use deprecated standards. Microsoft has warned that a registry setting will be needed to override the system default.

The company said: “Re-enabling TLS 1.0 or TLS 1.1 on devices should only be done as a last resort and as a temporary solution until incompatible applications can be updated or replaced. Support for these older TLS versions may be completely removed in the future.”

Eliminating deprecated versions of TLS has been an industry goal for several years; US National Security Agency (NSA) published Tips for getting rid of technology in 2021 and three years earlier, Apple, Microsoft, Google and Mozilla Announce Plan to transition from legacy protocols.

Microsoft’s progress has moved erratically since then. It initially planned to disable TLS 1.0 and 1.1 by default in Edge and Internet Explorer 11 in the first half of 2020 but moved that back to 2021. Then put September 20, 2022 As a history of Internet Explorer and EdgeHTML. Protocols are disabled by default in Chromium Edge starting with version 84.

A year later, the company is preparing to disable default protocols in its main operating system. ®

Leave a Reply

Your email address will not be published. Required fields are marked *