AnsweredAssumed Answered

upcoming IE changes

Question asked by Rob_T on Feb 21, 2015
Latest reply on Feb 26, 2015 by hellotls

Hi All,

 

fyr

 

1) IE 11 ( W7 / 8.1 / 2008R2 / 2012R2 ) will fully disable SSL3 by default with April 2015 patches (at least this is planned by MS)
http://blogs.msdn.com/b/ie/archive/2015/02/10/february-2015-security-updates-for-internet-explorer.aspx

@Ivan: Due this patches will arrive automatically, i think SSLLabs test could show SSL3 as disabled than too, right ?

 

2) Windows 10 "IE(however it is finally named or counted)" will support HSTS

http://blogs.msdn.com/b/ie/archive/2015/02/16/http-strict-transport-security-comes-to-internet-explorer.aspx

 

3) Question: have anyone see any info about TLS_FALLBACK_SCSV and Windows/IE ? (e.g any word about implementation in Window 10 or so ?)

4) Question: and how about more restrictive RC4 handling in upcoming Windows/IE versions ?

 

 

BR,
Rob

Outcomes