This article summarizes the state of the Microsoft Schannel implementation of Transport Layer Security (TLS) 1.0 as it relates to all known vulnerabilities that have been reported to Microsoft as of the date of this article.
The Microsoft Schannel implementation of TLS 1.0 in Windows is fully patched against all known vulnerabilities that have been reported to Microsoft. Customers' computers are protected against these vulnerabilities if all the following conditions are true:
Windows is fully patched, and all available security updates are installed.
The Windows default configuration of Schannel for TLS 1.0 is used.
However, TLS 1.0 is an aging protocol. Therefore, we highly recommend that customers have a plan to accelerate their migration toward products that support TLS 1.2 and to make sure that all applications are using TLS 1.2 by default.
Windows 10, Windows Server 2012 R2 Datacenter, Windows Server 2012 R2 Standard, Windows Server 2012 R2 Essentials, Windows Server 2012 R2 Foundation, Windows 8.1 Enterprise, Windows 8.1 Pro, Windows 8.1, Windows RT 8.1, Windows Server 2012 Datacenter, Windows Server 2012 Standard, Windows Server 2012 Essentials, Windows Server 2012 Foundation, Windows 8 Enterprise, Windows 8 Pro, Windows 8, Windows RT, Windows Server 2008 R2 Service Pack 1, Windows 7 Service Pack 1, Windows Server 2008 Service Pack 2, Windows Vista Service Pack 2