Schannel implementation of TLS 1.0 in Windows security status update: November 24, 2015

Applies to: Windows 10Windows Server 2012 R2 DatacenterWindows Server 2012 R2 Standard More

Summary


This article summarizes the state of the Microsoft Schannel implementation of Transport Layer Security (TLS) 1.0 as it relates to all known vulnerabilities that have been reported to Microsoft as of the date of this article.  

More Information


The Microsoft Schannel implementation of TLS 1.0 in Windows is fully patched against all known vulnerabilities that have been reported to Microsoft. Customers' computers are protected against these vulnerabilities if all the following conditions are true:
  • The version of Windows that you are using is still in support for security updates as defined by the Microsoft Support Lifecycle.
  • Windows is fully patched, and all available security updates are installed. 
  • The Windows default configuration of Schannel for TLS 1.0 is used. 
However, TLS 1.0 is an aging protocol. Therefore, we highly recommend that customers have a plan to accelerate their migration toward products that support TLS 1.2 and to make sure that all applications are using TLS 1.2 by default.