Why We Ask You to Update Your Browser

The primary reason to update your browser for this site is to support TLS 1.2 or later; we have disabled SSL 3.0 (the predecessor to TLS) in response to the POODLE attack, and TLS 1.0 and 1.1 in response to PCI DSS regulations effective , so you will either need to take the steps mentioned below to enable TLS 1.2, or update to a browser that supports TLS 1.2 by default. If you do not do this, you will be unable to register, log in, or check out.

How to Enable TLS 1.2 and Disable Earlier Protocols in IE for Desktop (and Opera 17+ and Google Chrome if on Windows)

Windows Phone requires a third-party registry editor.

  1. Open Internet Options (Tools→Internet Options in IE8+, Control Panel→Internet Options on any version of Windows).
  2. Click the Advanced tab.
  3. Make sure that SSL 2.0 and 3.0, and TLS 1.0 and 1.1 (if present) are unchecked and that TLS 1.2 is checked.
  4. Alternatively, download this Registry file (and also this one if using a 64-bit version of Windows) and double-click both of them; be sure to Allow or click Yes.
  5. Click OK and re-start Internet Explorer.

If you still use Windows XP or Vista, switch to Firefox 52 ESR; for Windows 95, NT4, 98, ME, or 2000, switch to the latest available version of Opera.

How to Enable TLS 1.2 and Disable Earlier Protocols in Mozilla Firefox and Related Browsers

  1. Open about:config in a new tab.
  2. Search for tls and double-click the entry for security.tls.version.min.
  3. Change this to 3, which corresponds to TLS 1.2.

How to Enable TLS 1.2 in Safari (and Opera 17+ and Google Chrome if on a Mac)

Upgrade your operating system to OS X 10.9 or later for desktop, and iOS5+ for mobile; there is no way to manually disable earlier versions of TLS in Safari.

For Google Chrome on the Desktop, you can open AppleScript Editor (in /Applications/Utilities), type in do shell script "open '/Applications/Google Chrome.app' --args --ssl-version-min=tls1.2" and save that as an Application, then use that to open Chrome; a similar script can be made for Opera 17+ and other Chromium-based browsers.

Fortunately, Firefox 45 ESR is available for OS X 10.6–10.8, and an unofficial build called TenFourFox is available for PPC versions of OS X 10.4–10.5.

How to Enable TLS 1.2 and Disable Earlier Protocols in Opera 10–12

  1. Press Ctrl+F12 (or Command+F12 on a Mac), or click the Opera menu and go to Settings→Preferences.
  2. Click on the Advanced tab, then Security in the left sidebar, then the Security Protocols button.
  3. Make sure that only Enable TLS 1.2 is checked.
  4. Alternatively, go to opera:config, search for tls, uncheck all TLS versions except 1.2, search for ssl, uncheck SSL v3, then click Save.
  5. Click OK.

Browser Recommendations

This list was last updated on .

Mozilla Firefox

Versions 24 and later support TLS 1.2, and 27 and later support it by default.

Google Chrome

Versions 30 and later support TLS 1.2, by default on Linux or if the Mac OS X or Windows system supports it; old versions back to 48 are available courtesy of FlashPeak, developers of the Slimjet fork.

Opera

All versions starting with 10, except for 13–16 (the early Chromium-based versions), support TLS 1.2, and 12.18 and 17 and later support it by default.

Internet Explorer, Microsoft Edge, and Safari

IE supports TLS 1.2 starting with Windows 7 and Windows Phone 8, and by default starting with IE11 (Windows 7, Windows 8.1 and later, and Windows Phone 8.1 and later); all versions of Microsoft Edge support TLS 1.2 by default.

Safari supports TLS 1.2 starting with version 7 (Mac OS X 10.9) and MobileSafari version 5 (iOS5), all by default.

IE is recommended only on Windows Phone (where it is unavoidable) and Windows for desktop, and Safari is recommended only on iOS (where it is unavoidable) and Mac OS; be sure to get the latest version.

The above list is not exhaustive, but every version of Windows starting with 95 has a Web browser that supports TLS 1.2, as do every version of Mac OS starting with 10.3 and every version of Android starting with 2.2, and even long-forgotten systems like Solaris.

Latest Browser Versions Supporting TLS 1.2 for Old Operating Systems

Last Updated
Recommendations are in green and — means none.
There is no browser that supports TLS 1.2 for DOS, BeOS, or QNX, and neither iOS nor WinRT devices, nor most other mobile devices, allow the user to install alternative browser engines, only shells.
(Chromebooks are currently kept up to date, and all versions of the now-abandoned Firefox OS support TLS 1.2 by default.)
OSBuilt-InFirefoxChromeOperaOther
OSBuilt-InFirefoxChromeOperaOther
Windows-Related
Vista and XP52.9.0esr 12.18 Otter Browser
200012.02
98 | ME* 11.64
NT4 | 98 | ME 10.63
95 10.63*
Phone 8 and latercurrent
Older Mobile (before Phone 7) 10.00
earlier (including Phone 7)
OS/2 | eComStation ESR 45.9.0
Mac OS X
10.99.1.3 current 65.0.3325.181 50.0.2762.67
10.6-10.8 ESR 45.9.0 12.16
10.5 (Intel)12.16
10.4 (Intel) 11.10
10.5 (PPC) FPR 10.63
10.4 (PPC)FPR10.63
10.3 10.10
earlier
Linux
Most 64-bit?current current currentMidori
Most 32-bit?current 48.0.2564.109 45.0.2552.898Midori
Android
5 and laterlatest current current 12.1.9 ?
4.1-4.4latest current | ESR 31.3.0 12.1.8?
4.0latest 55.0.2 (Intel | ARMv7) | ESR 31.3.0 12.1.8?
3 45.0.2 12.1.8?
2.3 47.0 | ESR 31.3.0 12.1.8?
2.2 ESR 31.3.0 | 31.0 12.1.8?
1.6-2.112.1.8?
earlier?
Other
BSDcurrent12.16
Solaris 10 | OpenSolarisESR 45.5.1 10.11
Earlier Solaris10.11