Information
The PCI Data Security Standard 3.1 recommends disabling 'early TLS' along with SSL:
SSL and early TLS are not considered strong cryptography and cannot be used as a security control after June 30, 2016.
Rationale:
This item is Not Scored for the following reasons:
Enabling TLS 1.2 is recommended.
These protocols do not suffer from known practical attacks.
Solution
Set the following registry locations to configure TLS 1.0. To disable, set Enabled to 0.
HKLM\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server\Enabled