Transport Layer Security (TLS) is a widely adopted cryptographic protocol that provides communications security over networks and is widely used for internet communications and online transactions.
What is TLS?
TLS (Transport Layer Security) protocol is used for SSL certificates, HTTPS, email and voice-over-IP communications. TLS has replaced its predecessor, Secure Sockets Layer (SSL), as a more secure protocol to provide these services. The most recent version, TLS 1.3, has been rebuilt to provide increased security and decreased overhead, however TLS 1.2 is considered the current, stable secure version at this time. Due to the vulnerabilities acknowledged with TLS 1.1 and below, it is important to have the option to force the use of a higher TLS version.
StackPath provides the ability to select a minimum version of accepted TLS protocol that is used in order to meet your security needs. Currently, all versions of the TLS protocol are supported, the minimum can be set as high as TLS 1.2. Once support for TLS 1.3 becomes more globally recognized and considered stable, the ability to set it as a minimum version accepted will be added as well.
As of 2018, TLS 1.2 and higher is required to meet PCI compliance standards for payment card related traffic.
Selecting Minimum TLS Version
Selecting the minimum version of TLS in the control portal will allow HTTPS connections from clients who support the selected version and above. Clients who use a lower version will not be able to access the application or website. By default, Sites created after July 2019 will default to 1.2 to allow for a healthy mix of compatibility and security for end-users. Support for TLS 1.3 will be implemented soon, and versions 1.0 and 1.1 will be discontinued at the end of 2019.
Step 1: Log in to the StackPath control portal at control.stackpath.com.
Step 2: Select the Site for which you'd like to specify the minimum TLS version.
Step 3: Select the EdgeSSL option from the Menu Bar.
Step 4: Locate the Minimum TLS Version option and select the desired minimum TLS version required for access.
The minimum version of TLS that can be used to securely access your website or application has now been set. If you have any questions, please feel free to drop us a line at email@example.com or reach out to us for live chat support, we're available 24/7.