https://readonlywiki.luccapirovano.com/index.php?action=history&feed=atom&title=TLS_Setting_in_Internet_Options
TLS Setting in Internet Options - Revision history
2026-06-15T23:10:09Z
Revision history for this page on the wiki
MediaWiki 1.43.3
https://readonlywiki.luccapirovano.com/index.php?title=TLS_Setting_in_Internet_Options&diff=1131&oldid=prev
170.55.73.212: Created page with "= TLS Settings in Internet Options (Windows) – Application Impact Chart = This page explains which applications are affected by the TLS protocol checkboxes located in: Control Panel → Internet Options → Advanced → Security These settings control the Windows SChannel / WinINet TLS stack. ---- == Applications Affected by Internet Options TLS Settings == These applications rely on Windows SChannel or WinINet and are directly affected by enabling or disabling T..."
2026-02-24T01:45:00Z
<p>Created page with "= TLS Settings in Internet Options (Windows) – Application Impact Chart = This page explains which applications are affected by the TLS protocol checkboxes located in: Control Panel → Internet Options → Advanced → Security These settings control the Windows SChannel / WinINet TLS stack. ---- == Applications Affected by Internet Options TLS Settings == These applications rely on Windows SChannel or WinINet and are directly affected by enabling or disabling T..."</p>
<p><b>New page</b></p><div>= TLS Settings in Internet Options (Windows) – Application Impact Chart =<br />
<br />
This page explains which applications are affected by the TLS protocol checkboxes located in:<br />
<br />
Control Panel → Internet Options → Advanced → Security<br />
<br />
These settings control the Windows SChannel / WinINet TLS stack.<br />
<br />
----<br />
<br />
== Applications Affected by Internet Options TLS Settings ==<br />
<br />
These applications rely on Windows SChannel or WinINet and are directly affected by enabling or disabling TLS versions.<br />
<br />
{| class="wikitable sortable"<br />
! Application !! Uses Windows TLS Settings? !! Notes<br />
|-<br />
| Internet Explorer || Yes || Fully controlled by Internet Options<br />
|-<br />
| Microsoft Edge (Legacy EdgeHTML) || Yes || Legacy Edge only<br />
|-<br />
| Control Panel Web Views || Yes || Built on IE engine<br />
|-<br />
| Windows Update || Yes || Uses Windows crypto stack<br />
|-<br />
| PowerShell (Windows PowerShell 5.1 and older) || Yes || Uses .NET Framework<br />
|-<br />
| .NET Framework Applications (default config) || Yes || Unless explicitly overridden<br />
|-<br />
| Microsoft Office (older builds) || Yes || Web services and activation<br />
|-<br />
| Remote Desktop Gateway || Yes || Uses SChannel<br />
|-<br />
| IIS (when using SChannel) || Yes || Server-side encryption<br />
|-<br />
| Outlook (older builds / certain auth flows) || Yes || Especially Exchange on-prem<br />
|-<br />
| WinHTTP-based Applications || Yes || Common in enterprise apps<br />
|-<br />
| SQL Server (native encryption) || Yes || Uses Windows crypto<br />
|}<br />
<br />
----<br />
<br />
== Applications NOT Affected by Internet Options TLS Settings ==<br />
<br />
These applications use their own TLS implementation (BoringSSL, NSS, OpenSSL, etc.) and are NOT controlled by Internet Options.<br />
<br />
{| class="wikitable sortable"<br />
! Application !! Uses Windows TLS Settings? !! Reason<br />
|-<br />
| Google Chrome || No || Uses BoringSSL<br />
|-<br />
| Mozilla Firefox || No || Uses NSS<br />
|-<br />
| Microsoft Edge (Chromium) || Mostly No || Uses Chromium TLS (still relies on Windows certificate store)<br />
|-<br />
| Opera || No || Chromium-based<br />
|-<br />
| Brave || No || Chromium-based<br />
|-<br />
| Discord || No || Electron (Chromium)<br />
|-<br />
| Slack || No || Electron-based<br />
|-<br />
| Zoom || No || Custom TLS stack<br />
|-<br />
| Steam || No || Uses OpenSSL<br />
|-<br />
| FileZilla || No || Own TLS library<br />
|-<br />
| Git (default config) || No* || Uses OpenSSL unless configured for SChannel<br />
|-<br />
| Java Applications (default JRE) || No || Uses Java TLS stack<br />
|-<br />
| Docker Desktop || No || Own TLS implementation<br />
|-<br />
| Node.js Applications || No || Uses OpenSSL<br />
|}<br />
<br />
----<br />
<br />
== Mixed or Conditional Cases ==<br />
<br />
{| class="wikitable sortable"<br />
! Application !! Depends? !! Explanation<br />
|-<br />
| .NET Core / .NET 5+ || Usually Yes || Defaults to SChannel on Windows<br />
|-<br />
| PowerShell 7+ || Yes || Uses .NET Core<br />
|-<br />
| Git for Windows || Maybe || If configured with http.sslBackend=schannel<br />
|-<br />
| Python (requests library) || Usually No || Uses OpenSSL<br />
|-<br />
| WSL (Linux applications) || No || Uses Linux TLS stack<br />
|}<br />
<br />
----<br />
<br />
== Best Practice Recommendation (2026) ==<br />
<br />
For Windows 10 / Windows 11 systems:<br />
<br />
* Enable TLS 1.2<br />
* Enable TLS 1.3<br />
* Disable TLS 1.0<br />
* Disable TLS 1.1<br />
<br />
Older TLS versions should only be enabled for legacy system compatibility.<br />
<br />
----<br />
<br />
== Quick Rule of Thumb ==<br />
<br />
* Built into Windows → Affected<br />
* .NET Framework app → Usually affected<br />
* Chromium / Electron-based → Not affected<br />
* Cross-platform open-source app → Usually not affected</div>
170.55.73.212