Microsoft has decided to disallow Transport Layer Security (TLS) versions 1.0 and 1.1 in the Windows operating system in a bid to increase the security posture of its customers and encourage modern protocol adoption. The company has warned that the move could impact SQL Servers of enterprises still using the older versions of the TLS.
These TLS versions have long been identified as having security weaknesses and were replaced with two successive upgrades, version 1.2 and 1.3.
“Over the past several years, internet standards and regulatory bodies have deprecated TLS versions 1.0 and 1.1, due to a variety of security issues,” Microsoft said in a blog post. “We have been tracking TLS protocol usage for several years and believe TLS 1.0 and TLS 1.1 usage data are low enough to act.”
