Deprecating Secure Sockets Layer Version 3.0, June 2015
- File formats:
- PROPOSED STANDARD
- RFC 5246
- Updated by:
- RFC 8996
- R. Barnes
- tls (sec)
Discuss this RFC: Send questions or comments to the mailing list [email protected]
The Secure Sockets Layer version 3.0 (SSLv3), as specified in RFC 6101, is not sufficiently secure. This document requires that SSLv3 not be used. The replacement versions, in particular, Transport Layer Security (TLS) 1.2 (RFC 5246), are considerably more secure and capable protocols.
This document updates the backward compatibility section of RFC 5246 and its predecessors to prohibit fallback to SSLv3.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.