What is TLS?
TLS is the protocol used to encrypt the communication when a browser accesses a site using HTTPS. When web traffic is encrypted with TLS, users see a green padlock in the browser's address bar.
TLS 1.3 is the current version of the TLS protocol.
What TLS options does wao.io offer?
For TLS we offer two options in wao.io, between which you can choose according to your site requirements.
On the one hand, we offer an option with the highest possible compatibility, i.e. support for as many browsers as possible, even very old ones. TLS 1, TLS 1.1, TLS 1.2 and TLS 1.3 are activated here. The "Intermediate" preset from https://wiki.mozilla.org/Security/Server_Side_TLS is used as cipher suite.
The second option offers very strict security options. Only TLS 1.2 and TLS 1.3 are activated as protocols. The "Modern" preset from https://wiki.mozilla.org/Security/Server_Side_TLS is used as cipher suite. TLS 1.2 and especially TLS 1.3 fix known vulnerabilities of older TLS versions. Thus, this option forces a secure communication, but excludes older browsers, e.g. Android before v.4.4, older versions of Internet Explorer and Safari, as users.
Which TLS option should you choose?
The option with all TLS protocols offers the highest possible compatibility. If there are no special reasons, e.g. compliance with PCI DSS 3.2, we recommend this option.
However, if there are compliance requirements with PCI DSS 3.2 or other reasons that prohibit the use of older TLS versions, you can ensure compliance with the option with the strict TLS settings.
Configure your site
If you have chosen how your users should connect to you site, you can configure the appropriate option in your DNS.