Tls 1.1, 1.2 Problems In Bdis 2014

I noticed some strange behaviour in BitDefender Internet Security 2014 (and maybe in AV also), regarding the ‘Scan SSL’ option in privacy settings. When this option is enabled TLS 1.1 and 1.2 are no longer used by Chrome and IE 11, and probably FireFox that I didn’t test.


To reproduce the error, enable ‘Scan SSL’ in privacy settings and visit https://www.howsmyssl.com you’ll see the (BEAST exploit) compromised TLS 1.0 is used, though both Chrome and IE 11 should be using TLS 1.2. Visiting the link will tell you your TLS 1.0 is Bad.


Now when the ‘Scan SSL’ setting is disabled and visiting above link you’ll see you are connected whit TLS 1.2 and all security options say you’re good to go.


This info has been send to support too, just wanted you guys to know.


Kind regards, Z. <_<

Comments

Leave a Comment

Rich Text Editor. To edit a paragraph's style, hit tab to get to the paragraph menu. From there you will be able to pick one style. Nothing defaults to paragraph. An inline formatting menu will show up when you select text. Hit tab to get into that menu. Some elements, such as rich link embeds, images, loading indicators, and error messages may get inserted into the editor. You may navigate to these using the arrow keys inside of the editor and delete them with the delete or backspace key.