Brave accepts TLS 1.0 and TLS 1.1 without any warning #2867

jumde · 2020-09-09T17:26:34Z

Description

Brave shows that TLS 1.0/1.1 is secure. You have to click on the lock icon to get a warning. But the lock should indicate that BEFORE clicking on it

go to chair for E-Business of Univerity of Magdeburg or tls-v1-0.badssl.com 1 or tls-v1-1.badssl.com 2
the site is using TLS 1.0 or TLS 1.1 and the lock next to the address bar is closed
klick on the lock and then there will be a warning text

The lock symbol shows a secure connection

The lock symbol should show an "not secure connection"

Every site that uses TLS 1.0 or TLS 1.1

iccub · 2020-09-09T17:28:16Z

how do we compare vs other browsers?

jumde · 2020-09-09T17:30:37Z

Other browsers have the same issue.

jumde added the security label Sep 9, 2020

diracdeltas added the priority/P4 Planned work. We expect to get to it "soon". label Oct 20, 2020