TLS Version

What is TLS?

TLS is short for Transport Layer Security. It is a cryptographic protocol that provides end-to-end communications security over networks and is widely used for internet communications and online transactions. You can read more information about TLS on the Transport Layer Security Wikipedia page.

Are we using TLS in our Cloud Container servers and what versions of TLS do Cloud Container servers support?

TLS is built-in to our Cloud Container products. If a container is SSL enabled, our Nginx Proxy container automatically configures HTTPS connection to use TLS v1.1, TLS v1.2 and TLS v1.3 by default.

Where are SSLv3 and TLS v1.0?

SSL is the predecessor of TLS. As with any software development or protocols, it becomes less secure and phased out as technology advanced. TLS v1.0 was based heavily on SSL and designed to solve compatibility issues therefore, it suffers the same vulnerbilities as SSL. As such, back on June 30, 2018, websites will need to stop supporting TLS 1.0, SSLv3 and ealier to remain PCI compliant.

How about TLS v1.1?

TLS v1.1 is fairly dated versions of the TLS protocol. It was published in 2006 as RFC 4346. Although improvements have been made in TLS v1.1, researchers found that it is still vulnerable to similar attacks as TLS v1.0.

Why should you use TLS v1.2 and above?

Many improvements have been made since the release of these versions and upgrading to the current standard (TLS 1.2 and TLS 1.3) is now considered the safest and most reliable method of delivering encrypted content over the Internet.

What are the pros and cons of using TLS v1.2 and above?

Browsers support TLS v1.2 (via caniuse.com)