{
"ConformanceCriteria": [
{
"Description": "The system MUST conform to the following rules regarding negotiation and handling of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols.\n
\n
The system MUST support TLS version 1.2 or higher, and MUST attempt to use TLS version 1.2 or higher before negotiating down to an older version of TLS.<\/li>\n
The system SHOULD support TLS version 1.1 and MUST attempt to use TLS version 1.1 before negotiating down to an older version of TLS or SSL in the event that TLS 1.2 or higher cannot be used.<\/li>\n
The system SHOULD NOT allow the use of TLS version 1.0 or SSL version 3.<\/li>\n