Microsoft will disable Transport Layer Security (TLS) 1.0 & 1.1 by default next year

The official blog of Microsoft just released the latest blog post saying that the company will disable the early obsolete version of the TLS transport layer security protocol by default on January 19, 2019.

This change will apply to Microsoft‘s Internet Explorer and Microsoft Edge browsers, and the old version of the protocol will not link correctly.

At present, the TLS transport layer security protocol has been officially released version 1.3. The new version brings better transmission performance and can also improve overall security.

Microsoft: Most websites and users will not be affected

The legacy TLS transport layer security protocol is very rare because most significant browsers no longer support this protocol.

For web developers, if you are still using the legacy TLS protocol, you will need to migrate immediately, as most users will not be able to access the site properly.

According to Microsoft’s statistics, the percentage of TLS versions 1.0 to 1.1 is less than 1% on websites that use Microsoft browsers to access all encrypted connections on a daily basis.

Statistics from the SSL lab show that more than 94% of websites have migrated to TLS version 1.2, and a few have upgraded version 1.3.

Even if the user is disabled, it can be turned on manually:

For some specific industries, individual enterprises may still use the old protocol internally, which is also okay because users can also manually open the agreement.

For users who need access to the old protocol, open the IE browser settings and check TLS 1.0 and TLS 1.1 in the advanced level and save.

Microsoft did not mention when it will completely disable the TLS 1.0 & 1.1 version of the transport protocol, but obviously, this is an early change and will be completely disabled.