TLS End of Life

Important information regarding TLS end of life

What is TLS

TLS, or Transport Layer Security is a cryptographic protocol designed to provide communications security over a computer network. In simple terms, TLS is a handshake between an application and a server.

There are 4 versions of TLS; 1.0, 1.1, 1.2 and 1.3, which are used in applications such as web browsing, email, instant messaging, and voice over IP. TLS can also be used within applications to transfer sensitive information.

TLS End of Life

Due to the agreed of TLS 1.0 and TLS is 1.1 (21 and 14 years old respectively) and because they are compromised, the big 4 browser and operating system providers (Apple, Mozilla, Google and Microsoft) have all committed to dropping support for TLS 1.0 and T;LS 1.1 leaving only TLS 1.2 and 1.3 active.

Any application that still relies on TLS 1.0 or TLS 1.1 will no longer work.

Timescales
  • Apple and Google ceased support for TLS 1.0 and 1.1 in March 2020
  • Microsoft will cease support TLS 1.0 and 1.1 in September 2020. This includes desktop (Windows) and cloud software (Office 365)
  • Mozilla’s dates are to be confirmed but have hinted that support will cease sometime during 2020.

 

How does this impact you?

The security of our customer’s Sage products is of paramount importance. Within Sage, TLC enables product installations, any API’s and 3rd party integration with Sage software. In some instances TLS will be used to encrypt traffic to allow Sage to communicate securely over external networks. Sage has announced a round of routine maintenance in response to the deprecation of TLS 1.0 and TLS 1.1 from its range of supported software.

Sage will be providing software updates for those affected by this planned withdrawal which will ensure product security is not compromised. You will be contacted by your CPiO Account Manager to discuss the necessary requirements for your software.

Devices running certain software versions such as Windows 10, iOS  11+ and Android 8+ will eventually only be able to connect to resources exclusively on TLS 1.2 and TLS  1.3.

As web servers and applications are upgraded, software that doesn’t support TLS 1.2 and TLS 1.3 will stop working.

The operating systems and software versions that do not support TLS 1.2 and TLS 1.3 are:

  • Android 4.3 and earlier versions
  • iOS 9 and earlier versions
  • Firefox version 5.0 and earlier versions
  • Internet Explorer 8-10 on Windows 7 and earlier versions
  • Internet Explorer 10 on Windows Phone
  • Safari 6.0.4/OS X 10.10.4 and earlier versions

If you are running one of the above you should upgrade the device or software. If you have no device or software older than what is detailed above, there is no action for you to take.

CPiO will take care of any forthcoming updates for CPiO Cloud customers in line with the CPiO Cloud T&C’s, ensuring you continue to operate securely. Updates to devices/software of on premise customers may incur a charge, in line with the CPiO Support and Maintenance T&C’s.

How this impacts CPiO Cloud

As a security conscious business, CPiO closely follows security best practices.

All web-servers and applications must also use TLS 1.2 or 1.3 and so in preparation, CPiO Cloud servers have been upgraded to support this where possible with current application versions.