According to this, you have options for TLS 1.2 support: https://en.wikipedia.org/wiki/Transport_Layer_Security#Web_browsers
You made is sound like iOS support is a critical feature for you. It's noted that the iOS version of Safari 5 does infact support TLS 1.2. Otherwise, wait for Chrome 29 (releases happen every few weeks). As for "man in the middle" attacks, are your remote users using VPN? Or are you depending on TLS to provide your encryption? --Matt Ross Ephrata School District ----- Original Message ----- From: David Lum [mailto:david....@nwea.org] To: NTSysADM@lists.myITforum.com [mailto:NTSysADM@lists.myITforum.com] Sent: Wed, 31 Jul 2013 08:07:04 -0800 Subject: [NTSysADM] man-in-the-middle attack > I need to present management with the odds of this actually getting > exploited, as I'd want to force TLS 1.2 for ADFS but that takes Chrome and > more importantly Safari (iOS devices) out of the mix, so I suspect > management might say "we want compatibility instead of protection from some > obscure attack that is unlikely to happen. > > In short, what are the odds of a MITM attack actually happening between my > remote employee and our ADFS server? > David Lum > Sr. Systems Engineer // NWEATM > Office 503.548.5229 // Cell (voice/text) 503.267.9764 > > >
