Microsoft has issued a warning to users about its plans to disable TLS 1.0 and TLS 1.1 in future Windows operating systems (OS). Transport Layer Security (TLS), an internet protocol dating back two decades, is responsible for encrypting communications between servers and clients. However, due to various security issues, the protocol received a major update in 2018 with the approval of TLS 1.3 by the Internet Engineering Task Force (IETF).
In a recent announcement, Microsoft informed users that its upcoming Windows 11 Insider Preview Build, scheduled for release this month, will have TLS 1.0 and 1.1 disabled by default. The company clarified that this change would apply exclusively to future new Windows operating systems, both client and server editions, and would not affect previously released Windows versions.
Microsoft emphasized that it does not anticipate any issues for the average home user following the update. However, enterprise users should exercise caution and conduct tests to ensure that all applications function correctly. In cases where applications break, they will be disabled, and such instances will be logged in the Windows Event Log using Event 36871. Administrators will have the option to re-enable older versions through the Windows Registry, but Microsoft strongly discourages this and advises it as a last resort.
It’s worth noting that Microsoft, along with Google, Apple, and Mozilla, had previously announced their intention to phase out TLS protocols starting from H1 2020. In August 2020, Windows 10 Insider build users witnessed TLS 1.3 being enabled by default, reflecting the industry-wide push towards enhanced security standards.
