Feedback

Changes to OOT and eSPM Security Protocol

From 16 August 2021 we will only be supporting the newer Transport Layer Security (TLS) protocol versions TLS v1.2 and v1.3.

The current security protocol TLS v1.1 is now out of date and security standard best practise suggests that only TLS v1.2 and above should be supported.

We previously removed support for TLS 1.0 in April 2020.

 

After the change Chorus will only support the following ciphers:

TLS v1.2

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

 

TLS v1.3

TLS_AES_256_GCM_SHA384

TLS_AES_128_GCM_SHA256

 

The updated TLS security protocols will be available in WOMBL from 24 May 2021 to facilitate any testing required you may wish to undertake.