Security Update: TLS 1.1 and weak SSL/TLS 1.2 ciphers will be deprecated
As part of our ongoing commitment to ensuring the highest standards of digital security, Calabrio is making critical updates to our encryption protocols. Effective April 2, 2024 Calabrio will deprecate Transport Layer Security (TLS) 1.1 and weak Secure Sockets Layer (SSL) and TLS 1.2 ciphers. This communication provides you with comprehensive information about these changes, their impact, and the necessary steps you need to take.
Why are we making these changes?
Our server-side SSL/TLS endpoint currently allows weak SSL and TLS cipher suites, which have known cryptographic vulnerabilities that could potentially allow attackers to decrypt or modify your encrypted traffic. By deprecating these weak ciphers, we aim to enhance the security and integrity of the data transmitted between your systems and Calabrio ONE.
Changes effective April 2, 2024
- Deprecation of TLS 1.1.
- Discontinuation of weak SSL and TLS 1.2 cipher suites, including those using block ciphers in CBC mode that are vulnerable to attacks like "POODLE", "LUCKY13", and "BEAST".
- Adoption of stronger cipher suites for TLS v1.2 and full support for TLS v1.3.
Impact to you
- Enhanced security and reduced risk of data breaches.
- If you use older HTTP clients, you will likely run into compatibility issues if your systems still rely on deprecated protocols.
Actions required before April 2, 2024
- Ensure your systems are updated to support TLS v1.2 or v1.3.
- For TLS v1.2, configure your systems to use strong cipher suites, such as TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 (see section 3.3.1 of NIST SP 800-52 Rev. 2 for a list of compatible ciphers).
- Test your systems to confirm compatibility with these updates.
Consequences of inaction
If you continue using weak SSL/TLS 1.2 ciphers and do not update your systems by April 2, 2024, you will face connectivity issues with Calabrio ONE services. This could lead to an inability to securely transmit data, impacting your operations.
Need Assistance?
We understand that these changes may require some adjustments in your systems.
Please contact your Customer Success Manager or contact Calabrio Support Services
U.S. only +1 (800) 303-1248
International +1 (763) 592-4680
International +46 8 568 950 10