Note: The Internet Explorer 11 desktop application will be retired and go out of support on June 15, 2022 (for a list of what's in scope, see the FAQ). The same IE11 apps and sites you use today can open in Microsoft Edge with Internet Explorer mode. Learn more here.

About this update

This update turns on the setting that disables SSL 3.0 fallback in Internet Explorer 11. Internet Explorer 11 will now block the connections to websites that fall back from TLS 1.0 or a later version to SSL 3.0 or an earlier version. By default, this update turns on this setting only for protected mode sites in Internet Explorer 11. By default, Internet sites and restricted sites run under protected mode in Internet Explorer 11. This setting can be configured for all sites, protected mode sites, or no sites (not recommended). You can make this configuration through Group Policy, the registry, or a one-click Fix it solution. 

For more information about how to configure this setting, see the configuration steps in the "About this update" section of the following Microsoft Knowledge Base article:

3013210 Update enables SSL 3.0 fallback warnings in Internet Explorer 11

Update information

To enable this update, install the most recent cumulative security update for Internet Explorer. To do this, go to Microsoft Update. Additionally, see the technical information about the most recent cumulative security update for Internet Explorer.

Note This update was first included in security update February cumulative security update for Internet Explorer (MS15-009).


See the terminology that Microsoft uses to describe software updates.

Need more help?

Expand your skills
Explore Training
Get new features first
Join Microsoft Insiders

Was this information helpful?

What affected your experience?

Thank you for your feedback!