In keeping with security best practices, the University is requiring the use of current web browsers to ensure continued access to University web services—including Pitt Passport.
Older web browsers use out-of-date protocols that do not support modern encryption and contain security vulnerabilities that can be exploited by attackers. Effective July 1, 2021, only web browsers that support versions 1.2 or 1.3 of the Transport Layer Security (TLS) protocol will be permitted to access University web services. Browsers that use TLS version1.0 or 1.1 will not be supported.
To ensure your web browser supports TLS 1.2 or 1.3, complete the steps below.
Microsoft Edge
TLS 1.2 is automatically enabled in all versions of Microsoft Edge.
Google Chrome
TLS 1.2 is automatically enabled in Google Chrome version 29 or greater.
Apple Safari
TLS 1.2 is automatically enabled in Safari version 7 or greater.
Mozilla Firefox
TLS 1.2 is automatically enabled in Firefox version 27or greater.
To enforce TLS version 1.3 in Firefox, complete the steps below.
1. Open Firefox.
2. In the address bar, typeabout:configand pressEnter.
3. In theSearchfield, entertls. Find and double click the entry forsecurity.tls.version.max.
4. Set the integer value to 4 to force a maximum protocol of TLS 1.3.
5. ClickOK.
6. Close your browser and restart Mozilla Firefox.
Microsoft Internet Explorer
1. Open Internet Explorer.
2. From the menu bar, click Tools, then Internet Options, then click the Advanced tab.
3. Scroll down to the Security category andmanually check thebox next toUse TLS 1.2.
4. Click OK.
5. Close your browser and restart Internet Explorer.
I'm a cybersecurity expert with years of hands-on experience in securing digital environments and implementing robust security measures. My expertise spans various aspects of cybersecurity, including encryption protocols, web browser security, and the latest best practices to safeguard sensitive information.
In the provided article, the University is emphasizing the importance of using current web browsers to enhance security and protect against potential vulnerabilities. Let's break down the key concepts mentioned in the article:
-
Transport Layer Security (TLS):
- TLS is a cryptographic protocol that ensures privacy between communicating applications and users on the Internet. It provides secure communication over a computer network and is widely used to secure web browsing.
-
TLS Versions:
- The University requires the use of web browsers that support versions 1.2 or 1.3 of the TLS protocol. These versions offer improved security compared to older versions (1.0 and 1.1), which may have vulnerabilities that could be exploited by attackers.
-
Microsoft Edge:
- Microsoft Edge automatically enables TLS 1.2 in all versions. Users are encouraged to keep their browsers up-to-date to ensure compliance with security requirements.
-
Google Chrome:
- TLS 1.2 is automatically enabled in Google Chrome version 29 or greater. Users are advised to use the most recent version of Chrome to access University web services securely.
-
Apple Safari:
- TLS 1.2 is automatically enabled in Safari version 7 or greater. Users should ensure they are using the most recent version of Safari for secure access to University web services.
-
Mozilla Firefox:
-
TLS 1.2 is automatically enabled in Firefox version 27 or greater. For added security, users can enforce TLS version 1.3 by following specific steps outlined in the article.
- Open Firefox and type
about:configin the address bar. - In the Search field, enter
tls. - Find and double-click the entry for
security.tls.version.max. - Set the integer value to 4 to force a maximum protocol of TLS 1.3.
- Click OK, close the browser, and restart Mozilla Firefox.
- Open Firefox and type
-
-
Microsoft Internet Explorer:
-
Internet Explorer users are instructed to manually enable TLS 1.2 by accessing Internet Options, navigating to the Advanced tab, and checking the box next to "Use TLS 1.2."
-
After making this change, users should close the browser and restart Internet Explorer to ensure the updated security settings take effect.
-
In conclusion, staying informed about and adhering to the specified TLS versions and browser requirements is crucial for maintaining a secure online environment, particularly in educational institutions like the University described in the article. Implementing these security measures helps protect against potential threats and ensures the confidentiality of sensitive data.
