TLS 1.2

TLS 1.2

TLSv1.2 is secure only when it is configured properly!

Last Updated Thu, 12 Dev 2018 12:00:01 -0400

Overview:

TLSv1.2 is a revision to the TLSv1.1 and was released in August of 2008. Just like previous revisions to TLS, this revision aims at improving the security of the protocol by improving the encryption and hashing standards. One of the primary goals of the TLS 1.2 revision was to remove the protocol’s dependency on the MD5 and SHA-1 digest algorithms.

Getting Started:

Developer's QuickStart

Are you a developer? Get started with crucial implementation details above.

IT Admin's QuickStart

Are you an IT administrator? Get started with best practice setup details above.

Manager's QuickStart

Are you a Manager? Get started with best practice setup details above.

More Useful Information:

Best Practices

TLS 1.2 uses Auth-then-Encrypt, or MAC-then-Encrypt, which is known to be vulnerable:
Check out the RFC for Encrypt-then-Auth. note: this is addressed in TLS 1.3, so upgrade if you can! https://tools.ietf.org/html/rfc7366

For more details check the FAQ for this algorithm.

Crypto Done Right!
A Cryptographic Knowledge Base

A Cryptographic Knowledge Base

Overview:

Getting Started:

More Useful Information:

Best Practices

Further Reading