我有一个ASP.NET Forms应用程序使用程序集目标&Framework Framework 4.6构建,它调用asmx服务,该服务也使用针对Framework 4.6的程序集构建。
I have an ASP.NET Forms applicationbuilt with assemblies targetingFramework 4.6 which calls an asmx service which is also built with assemblies targeting Framework 4.6.
我有测试当两个服务器之间仅启用TLS 1.2时,ASP.NET Forms应用程序可以与asmx通信。但我们没有指定 服务 Point 管理器。安全协议属性要使用的TLS版本。
I have tested that the ASP.NET Forms application can communicate with the asmx when only TLS 1.2 is enabled between both servers. But we do not specify against the ServicePointManager.SecurityProtocol Property which version of TLS to use.
我们的应用程序已在各个客户站点运行,如果我们的客户在支持的服务器上运行并且正确配置以允许两个服务器之间的TLS 1.2,但也可能允许TLS 1.1和1.0兼容性与其他应用程序一样,我们的ASP.NET应用程序是否仍然使用TLS 1.2?
Where our application is already running at various customer sites, if our customers are running on servers which support and areconfigured correctly to allow TLS 1.2 between both servers involved, but may also permit TLS 1.1 and 1.0 for compatibility with other applications, will our ASP.NET application still use TLS 1.2?
针对.NET 4.6的应用程序的默认协议是否始终是两台服务器之间允许的最安全的协议?或者什么时候不是?
Will the default protocol for an application targeting .NET 4.6 always be the most secureallowed between both servers? Or when wouldn't it be?
谢谢。
Paul。
推荐答案
默认情况下,在SSL连接开始时会进行握手,并同意双方支持的最高支持加密选项。
By default, at the beginning of SSL connection will do a handshake, and agree upon the highest supported encryption option that both side supports.
如果双方都支持TLS1.2,这将是使用的协议。
If both side supports TLS1.2, that'll be the protocol be used.
更多推荐
如果两个服务器都允许TLS 1.2,那么.NET Framework V4.6默认会使用它吗?
发布评论