Security
TLS 1.3
The modern target, not the minimum. One round-trip handshake, mandatory forward secrecy, every weak cipher removed. If your stack supports it, prefer it.
What it is
RFC 8446 — Transport Layer Security 1.3. A ground-up redesign of the TLS handshake that removes static RSA key exchange, all non-AEAD ciphers, compression, and renegotiation. 1-RTT by default; 0-RTT for resumption.
Why it matters
Faster (one fewer round trip on first connection), safer (no insecure-by-default options to accidentally configure), and required for some compliance regimes (FedRAMP High, some PCI scopes). 1.2 stays as a fallback, but 1.3 should be negotiated whenever possible.
Who it applies to
Every HTTPS endpoint — modern stacks support it; legacy stacks should be on the migration list.
How WQI scores it
Web Quality Index considers this standard satisfied when the supporting factor passes.
| # | Factor | Status |
|---|---|---|
| 27 | TLS minimum version supported | planned |
0 of 1 supporting factors are currently collected. Sites where the remaining 1 haven't been measured will show as partial or unknown on this standard until the data lands.