On 07/09/2018 05:40 PM, Kathleen Moriarty wrote: > Stephen and I posted the draft below to see if the TLS working group > is ready to take steps to deprecate TLSv1.0 and TLSv1.1. There has > been a recent drop off in usage for web applications due to the PCI > Council recommendation to move off TLSv1.0, with a recommendation to > go to TLSv1.2 by June 30th. NIST has also been recommending TLSv1.2 > as a baseline. Applications other than those using HTTP may not have > had the same reduction in usage. If you are responsible for services > where you have a reasonable vantage point to gather and share > statistics to assess usage further, that could be helpful for the > discussion. I have access to stats from a small UK-based ESP. Of the inbound:
SMTP connections in plaintext: 15% Of TLS: SMTP using TLS version prior to 1.2 : 20% SMTP using TLSv1.1 : 0.03% I note specifically that Facebook notification mails use TLSv1.0 -- Cheers, Jeremy _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls