When scanning various banks online sites from https://www.ssllabs.com/ssltest/
the result indicates they are still using TLSv1.0 (besides 1.1 & 1.2) :
Result for citi:
Thought TLSv1.0 is deprecated as of last Jun/Jul & v1.1 is till mid next year?
Some PT scannners report v1.0 as with BEAST attack vulnerability while
v1.1 has some other vulnerability.
Refer to attached screen which gives the scan output of Citi:
does the green color on TLSv1.2 mean it will be used first & will fallback to
v1.1/1.0 if the browser/client doesn't support it?
If this is a fallback situation, is it secure?