Hi, my name is Gabriel Montenegro and I am a Program Manager in Windows Core Networking working on web technologies.
The secure web (HTTP over TLS, also known as “HTTPS”) is increasingly prevalent. Good.
However, there are several versions of TLS and there are many ciphers that it can use, and some of those combinations are not nearly as strong any more. Bad.
It is imperative to be able to specify a minimum level of security for your connections, for example, at least version 1.2 of TLS, disallow weaker and outdated ciphers.
Please read our blog on new capabilities in Windows Server 2019 to enforce improved security on connections:
https://www.microsoft.com/security/blog/2019/09/30/tls-version-enforcement-capabilities-now-available-certificate-binding-windows-server-2019/
