Feedback

Chorus Portal Transport Layer Security changes

Overview

Transport Layer Security (TLS) v1.0 and TLS v1.1 are old security protocols.

From 4 February 2022 Chorus will only be supporting TLS v1.2 in line with security standard best practice.

Chorus will only be supporting the following ciphers post the change:

  • TLS v1.2
  • ECDHE-RSA-AES128-GCM-SHA256 (0xc02f)
  • ECDHE-RSA-AES128-CBC-SHA (0xc013)
  • ECDHE-RSA-AES128-SHA256 (0xc027)
  • ECDHE-RSA-AES256-GCM-SHA384 (0xc030)
  • ECDHE-RSA-AES256-CBC-SHA (0xc014)
  • ECDHE-RSA-AES256-SHA384 (0xc028)
  • AES128-GCM-SHA256 (0x9c)
  • AES128-SHA (0x2f)
  • AES128-SHA256 (0x3c)
  • AES256-GCM-SHA384 (0x9d)
  • AES256-SHA (0x35)
  • AES256-SHA256 (0x3d)
  • CAMELLIA128-SHA (0x41)
  • CAMELLIA256-SHA (0x84)
  • ECDHE-ECDSA-AES128-GCM-SHA256 (0xc02b)
  • ECDHE-ECDSA-AES128-SHA (0xc009)
  • ECDHE-ECDSA-AES128-SHA256 (0xc023)
  • ECDHE-ECDSA-AES256-GCM-SHA384 (0xc02c)
  • ECDHE-ECDSA-AES256-SHA (0xc00a)
  • ECDHE-ECDSA-AES256-SHA384 (0xc024)
  • DHE-RSA-AES128-GCM-SHA256 (0x9e)
  • DHE-RSA-AES128-SHA (0x33)
  • DHE-RSA-AES128-SHA256 (0x67)
  • DHE-RSA-AES256-GCM-SHA384 (0x9f)
  • DHE-RSA-AES256-SHA (0x39)
  • DHE-RSA-AES256-SHA256 (0x6b)
  • DHE-RSA-CAMELLIA128-SHA (0x45)
  • DHE-RSA-CAMELLIA256-SHA (0x88)

 

Next steps and contact

The TLS changes will be made in EMMA from 19 October 2021 to allow any testing required.

Please contact your account team if you have any questions regarding this change.