hellotls

Microsoft has disabled SSL 3.0 by default in IE 11

Discussion created by hellotls on Apr 14, 2015
Latest reply on Apr 14, 2015 by Adm Selec

Microsoft just released KB3038314, which disabled SSL 3.0 by default in Internet Explorer 11. So Qualys SSL Labs - Projects / User Agent Capabilities: IE 11 / Win 7 and Qualys SSL Labs - Projects / User Agent Capabilities: IE 11 / Win 8.1 need to update.[1][2]

 

Also, yesterday, the IESG approved the RFC document "Deprecating Secure Sockets Layer Version 3.0" (draft-ietf-tls-sslv3-diediedie-03),[3] which states "SSLv3 MUST NOT be used.  Negotiation of SSLv3 from any version of TLS MUST NOT be permitted."[4]

 

[1] Microsoft Security Advisory 3009008

[2] Microsoft Security Bulletin MS15-032 - Critical

[3] [TLS] Protocol Action: 'Deprecating Secure Sockets Layer Version 3.0' to Best Current Practice (draft-ietf-tls-sslv3-die…

[4] draft-ietf-tls-sslv3-diediedie-03

Outcomes