said by Mele20:
Why would Fx be getting TLS 1.2 "soon" when it doesn't even have TLS 1.1?
Firefox is always slow to to enable new crypto features and fixes. They were actually the *last* browser to patch against the BEAST attack, with the exception of Safari, which never patched it at all.
The major security benefit of TLS 1.1, the explicit CBC IVs, was retrofitted to previous versions in the form of 1/n-1 record splitting.
The major point for TLS 1.2 right now is AES-GCM, since that will allow people to get away from both RC4 and CBC mode ciphers.
said by norwegian:
evoxllx's mention of TSL 1.0 and web pages is requite relevant, since all the uproar over the inherent weaknesses discovered, not many sites will work on anything more than ver 1.0 still.
If the browsers and web pages at large fix this, then I think it a positive jump forward, be that next week or next quarter.
TLS 1.1-1.2 support is on the rise for servers, it can be seen on sslpulse.
»www.trustworthyinternet.org/ssl- ··· l-pulse/
Over 22,000 sites support TLS 1.2 now, many big sites as well.