Revision as of 03:29, 20 July 2024 edit Mikeblas (talk \| contribs) Administrators 82,146 edits replace undefined reference added by User:LittlePrime with fact tags ← Previous edit		Revision as of 03:34, 20 July 2024 edit undo Mikeblas (talk \| contribs) Administrators 82,146 edits add actual citations to RFCs Next edit →
Line 194: TLS 1.2 (2008) introduced a means to identify the hash used for digital signatures. While permitting the use of stronger hash functions for digital signatures in the future (rsa,sha256/sha384/sha512) over the SSL 3.0 conservative choice (rsa,sha1+md5), the TLS 1.2 protocol change inadvertently and substantially weakened the default digital signatures and provides (rsa,sha1) and even (rsa,md5).<ref name="TLSv1.2-changes">{{cite IETF \|rfc=5246 \|title=The Transport Layer Security (TLS) Protocol Version 1.2 \|section=1.2 \|sectionname=TLSv1.2's Major Differences from TLSv1.1}}</ref> [[Datagram Transport Layer Security]] (DTLS or Datagram TLS) 1.0 is a modification of TLS 1.1 for a packet-oriented transport layer, where packet loss and packet reordering have to be tolerated. The revision DTLS 1.2 based on TLS 1.2 was published in January 2012.<ref name="RFC 6347">{{Cite IETF \|rfc=6347}}</ref> TLS 1.3 (2018) specified in RFC 8446 includes major optimizations and security improvements. QUIC (2021) specified in RFC 9000 and DTLS 1.3 (2022) specified in RFC 9147 builds on TLS 1.3. The publishing of TLS 1.3 and DTLS 1.3 obsoleted TLS 1.2 and DTLS 1.2. Line 204: ! Implementation ! [[Transport Layer Security\|SSL 2.0]] (insecure)<ref name="sslv2">{{cite IETF\|draft=draft-hickman-netscape-ssl-00\|title=The SSL Protocol\|date=19 April 1995\|last1=Elgamal\|first1=Taher\|last2=Hickman\|first2=Kipp E. B.}}</ref> ! [[Transport Layer Security\|SSL 3.0]] (insecure)<ref name="auto">~~RFC~~{{cite IETF\|rfc=6101}}</ref> ! [[Transport Layer Security\|TLS 1.0]] (deprecated)<ref name="auto1">~~RFC~~{{cite IETF\|rfc=2246}}</ref> ! [[Transport Layer Security\|TLS 1.1]] (deprecated)<ref name="auto2">~~RFC~~{{cite IETF\|rfc=4346}}</ref> ! [[Transport Layer Security\|TLS 1.2]]<ref name="tls" /> ! [[Transport Layer Security\|TLS 1.3]] ! [[Datagram Transport Layer Security\|DTLS 1.0]] (deprecated)<ref name="auto3">~~RFC~~{{cite IETF\|rfc=4347}}</ref> ! [[Datagram Transport Layer Security\|DTLS 1.2]]<ref name="RFC 6347" /> ! [[Datagram Transport Layer Security\|DTLS 1.3]]{{fact\|date=July 2024}} Line 1,072: \| {{no}}<ref name="nss_srp"/> \| {{no}}<ref name="nss_srp"/> \| {{no}}<ref name="nss_psk">{{cite web \|url=https://bugzilla.mozilla.org/show_bug.cgi?~~id=306435~~id6435 \|title=Bug 306435 - Mozilla browsers should support the new IETF TLS-PSK protocol to help reduce phishing \|publisher=Mozilla \|accessdate=2014-01-25}}</ref> \| {{no}}<ref name="nss_psk"/> \| {{no}}<ref name="nss_psk"/>

Comparison of TLS implementations: Difference between revisions