Hundreds Of Thousands Of Websites To Be Marked As Insecure In Latest Firefox Update – Response From Industry Expert

Firefox’s latest update and its implications for the hundreds of thousands of websites that still use the outdated TLS 1 & 1.1 standards.

With this update, Firefox will restrict access to any website using TLS 1 & 1.1, marking them as insecure. Websites still relying on these standards include those of major banks, retailers, news organizations and other high-profile businesses.

 

Experts Comments

March 11, 2020
Kevin Bocek
VP Security Strategy & Threat Intelligence
Venafi
TLS certificates are a vital type of machine identity, part of the system of online trust that our entire digital world is built on. They enable browsers and websites to know what can or can’t be trusted, and communicate with each other securely. Yet the TLS 1 and 1.1 machine identity protocols are decades old, and have been found to be vulnerable to a number of cryptographic attacks. Firefox’s decision to remove these outdated protocols is therefore a major boost for the security of its.....Read More
TLS certificates are a vital type of machine identity, part of the system of online trust that our entire digital world is built on. They enable browsers and websites to know what can or can’t be trusted, and communicate with each other securely. Yet the TLS 1 and 1.1 machine identity protocols are decades old, and have been found to be vulnerable to a number of cryptographic attacks. Firefox’s decision to remove these outdated protocols is therefore a major boost for the security of its users. Yet for the hundreds of thousands of websites that still use these machine identities, Firefox 74 will force them into quickly replacing TLS 1 and 1.1 or face the prospect of greeting visitors to their websites with insecure warnings, which can damage their business as well as their credibility. Firefox’s move underlines just how important it is for businesses to be able to quickly find and replace outdated machine identities. With the other major browsers expected to follow suit, this level of cryptoagility is now more important than ever.  Read Less
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Share on facebook
Share on twitter
Share on linkedin

Recent Posts

Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics

Twitter Facebook-f Linkedin Youtube

Working With Us

The Pages

Our Contributing Experts