Here’s another quick tip for the security conscious people out there.
Windows 7 supports a security protocol called TLS (Transport Layer Security) which superseded SSL as the security protocol of choice. Specifically, Windows 7 supports up to TLS 1.1 but the support for this version is disabled by default which forces compatibility back down to TLS 1.0.
Unfortunately, TLS 1.0 is susceptible to an attack by BEAST (Browser Exploit Against SSL/TLS) which basically allows acookie (the thing that proves your identity to a website after you have logged in) to be decrypted allowing bad guys to be able to login as someone else without the need for a username and password.
Microsoft’s Internet Explorer browser simply uses the abilities of the underlying Windows operating system in its ability to support a suite of encryption protocols including the older SSL protocols and the most recent TLS protocols. If you’re using Windows 7 you can easily enable TLS 1.1 and avoid this BEAST vulnerability by visiting this link at Microsoft Support and clicking on the “Fix it” link under the “Fix it solution for TLS 1.1 on Internet Explorer” section (just make sure you use the “Enable” version. This basically automates the required setting updates without you having the go through the registry or local policies to enable it.
It’s a quick and easy method to improve your browser security. Stay tuned for updates for the other browsers over the coming weeks.
Follow Us!