AnsweredAssumed Answered

TLS_FALLBACK_SCSV not supported with only one protocol

Question asked by Rafael Kassner on Oct 16, 2014
Latest reply on Oct 16, 2014 by Ivan Ristić

When I force to use only TLS 1.2, I'm getting all in orange: Downgrade attack prevention = No, TLS_FALLBACK_SCSV not supported.

 

The server that I'm testing supports TLS_FALLBACK_SCSV, but it just can't be tested. That should be an error, since, in fact, the client can't downgrade?

Outcomes