Hi Chrome devs,
I notice that as of 44+ Chrome is defaulting to a minimum TLS version of 1.1. When visiting a website whose maximum version <1.1, the following message is displayed:
This webpage is not available
ERR_SSL_VERSION_OR_CIPHER_MISMATCH
Hide details
A secure connection cannot be established because this site uses an unsupported protocol.
This message is only informative to technically inclined users. Most users will problem-solve by trying an alternative browser (possibly at the direction of the deficient website), rather than knowing to navigate to chrome://flags.
I suggest (1) that the error message be disambiguated to indicate whether it is a TLS version or cipher mismatch problem, or both; and (2) that the language be made more user friendly to explain what is wrong with these. Otherwise users are liable to interpret it as a Chrome problem, not a website problem, and they are likely to experience that some other browser "just works".
By way of example, one service that supports only TLS 1.0 is EZproxy, which is an authentication gateway for premium online resources (journals, reference works, etc.) used by almost all university and municipal libraries in North America. I wrote to
sup...@oclc.org, the entity responsible for EZproxy, and got the message below. Obviously, they feel no sense of hurry. Clearer error messages may have the added salutary effect of encouraging such companies to move faster on upgrading their services to current standards.
Thank you for contacting OCLC Customer Support.
The development team for EZproxy stated TLS 1.1 & 1.2 will not be supported by EZProxy until version 6.1. They have not released the date for the release of version 6.1.
Please let me know if there is anything more I can help you with regarding this issue.