Geeks for your information News Microsoft Windows News v
Microsoft enables TLS 1.3 by default in latest Windows 10 builds
Microsoft enables TLS 1.3 by default in latest Windows 10 builds
silversurfer Offline
Staff Member
******
Posts: 3,885
Threads: 3,283
Thanks Received: 5,064 in 3,838 posts
Thanks Given: 6,200
Joined: 12 September 18
#1
Information  21 August 20, 11:34
Quote:Microsoft says that TLS 1.3 will be enabled by default in all Windows 10 Insider Preview builds beginning with Build 20170 as the start of a wider rollout to all Windows 10 systems.
 
According to Microsoft, TLS 1.3 is also enabled by default in IIS/HTTP.SYS and it will be added to .NET starting with version 5.0.
 
The company recommends developers to start implementing TLS 1.3 within their services and apps, using the TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, and TLS_CHACHA20_POLY1305_SHA256 cipher suites supported by the Windows TLS stack.
 
"TLS 1.3 eliminates obsolete cryptographic algorithms, enhances security over older versions, and aims to encrypt as much of the handshake as possible," Microsoft said today.
 
TLS 1.3, the next major version of the Transport Layer Security protocol, was approved by the Internet Engineering Task Force (IETF) on March 21, 2018, following four years of discussions and 28 protocol drafts.
 
The TLS secure communication protocol is designed to protect client/server applications from eavesdropping, tampering, and message forgery while exchanging information over an Internet connection.
 
TLS 1.3 comes with several differences when compared to the TLS 1.2 protocol it deprecates, including:
  • Removes older encryption and hashing algorithms (such as MD5 and SHA-224) and adds harder to crack alternatives (such as ChaCha20, Poly1305, Ed25519, x25519, and x448).
  • Is a lot faster at negotiating the initial handshake between the client and the server, reducing the connection latency and removing the excuse of not supporting HTTPS because of lower browsing speeds.
  • Supports features like Zero Round Trip Time (0-RTT) and TLS False Start designed to also cut down the time needed to establish encryption handshakes with hosts to which the client has talked before.
  • Comes with downgrade attack protection that prevents an attacker from tricking a server into using older versions of the protocol, susceptible to known vulnerabilities.

Read more: https://www.bleepingcomputer.com/news/se...10-builds/
[-] The following 2 users say Thank You to silversurfer for this post:
  • Deep900, harlan4096
Find
Reply
harlan4096 Offline
MalWare Zoo Team
*******
Posts: 15,813
Threads: 10,138
Thanks Received: 9,300 in 7,446 posts
Thanks Given: 10,214
Joined: 12 September 18
#2
23 August 20, 15:37
Additional Info: https://www.ghacks.net/2020/08/23/tls-1-...9Ujn46bmHI
[-] The following 1 user says Thank You to harlan4096 for this post:
  • silversurfer
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
AMD suggests it may open-source FSR 4 a...
AMD still has nothin...harlan4096 — 17:21
Intel Arc G3 Panther Lake series for han...
Intel G3 with LPDD...harlan4096 — 07:32
Core Ultra 7 270K Plus and Ultra 5 250K...
Intel reportedly ‘ca...harlan4096 — 11:27
Core Ultra 7 270K Plus and Ultra 5 250K ...
Intel’s Core Ultra...harlan4096 — 11:09
Adobe Acrobat Reader DC 2025.001.21184
Adobe Acrobat Read...harlan4096 — 10:45

[-]
Birthdays
Today's Birthdays
avatar (41)svoyaEnuct
Upcoming Birthdays
avatar (47)hapedDow
avatar (46)komriwat
avatar (38)showercurtains
avatar (49)PeterWhink
avatar (50)neuthrusBub
avatar (30)script6027529171
avatar (46)myhotseeve
avatar (46)Edwinmub
avatar (46)dimaWeami
avatar (39)TranoTymn
avatar (39)MezirLal
avatar (50)listfquoto
avatar (46)dima6sarPrave
avatar (38)Michaelaburi
avatar (46)dpascoal
avatar (51)Ronaldduh
avatar (39)legalgauch
avatar (44)Baihu
avatar (27)RaseinsLikes

[-]
Online Staff
There are no staff members currently online.

>