Security News > 2020 > February > Firefox 74 Will Disable TLS 1.0 and TLS 1.1 by Default
An improvement over the Secure Sockets Layer protocol, TLS is meant to improve the security of the Web, but flaws and weaknesses in older iterations, specifically TLS 1.0 and TLS 1.1, render connections vulnerable to attacks such as BEAST, CRIME and POODLE. The newer TLS 1.2 and TLS 1.3 versions are both faster and safer, and major browser vendors have already laid out plans to deprecate the older releases to ensure the security of their users.
Mozilla has already introduced the change in Firefox Beta 73, in which the minimum TLS version allowable by default is TLS 1.2.
Because TLS version mismatches might appear if websites do not include support for the newer versions of the protocol, users are provided with the option to fallback to TLS 1.0 or TLS 1.1, via an override button on the error page.
Van der Merwe encourages operators to upgrade their servers to ensure they provide a secure experience to their users, especially since plans regarding TLS 1.0 and TLS 1.1 deprecation have been announced over a year ago.
Firefox 74, which is expected to arrive in the stable channel on March 10 - Mozilla has shifted to a 4-week release cycle - will require TLS 1.2 as the minimum version for secure connections.