TLS, short for Transport Layer Security, is an encryption protocol that protects data in transit from one server to another. The encryption protocol deploys whenever a web browser or application transmits data over a network. As of 30 June 2018, the Payment Card Industry (PCI) requires all data processors to withdraw support for the encryption method Transport Layer Security (TLS) version 1.0, as it is no longer regarded as strong ‘cryptography.’
Engaging Networks will disable TLS 1.0 on 1st June 2018 at 1 pm EDT / 6pm BST. Please note that no downtime will be required for the update.
What actions are required?
TLS 1.0 has already been superseded by TLS 1.1 and TLS 1.2. Modern browsers now use the latter methods for processing.
As a day to day user of Engaging Networks, using a modern browser, and (if relevant) as an organisation processing payments on behalf of your supporters, you will see no change after the 1 June 2018 update.
If you are an organisation that has third party providers connecting to Engaging Networks, through APIs, you should confirm that these providers are TLS 1.1 and TLS 1.2 ready.
Some of your supporters might still be running older operating systems and browsers, and if they have not enabled TLS v1.1 and TLS v1.2 under their browser’s settings screen, then Engaging Networks pages will fail to load for them. This is especially true for supporters who may still be using Desktop Internet Explorer versions 8, 9, or 10.
How to enable TLS protocols on older browsers
If you are running an older browser, you need to enable the browser’s TLS 1.1 and/or TLS 1.2 protocols to help with page viewing.
For security, it is always recommended to upgrade your operating system and browser to be inline with industry standards.
For instructions on how to enable these protocols in your older browsers, check the list below:
Microsoft Internet Explorer
- Open Internet Explorer
- From the menu bar, click Tools > Internet Options > Advanced tab
- Scroll down to Security category, manually check the option box for Use TLS 1.1 and Use TLS 1.2
- Click OK
- Close your browser and restart Internet Explorer
Google Chrome
- Open Google Chrome
- Click Alt F and select Settings
- Scroll down and select Show advanced settings…
- Scroll down to the Network section and click on Change proxy settings…
- Select the Advanced tab
- Scroll down to Security category, manually check the option box for Use TLS 1.1 and Use TLS 1.2
- Click OK
- Close your browser and restart Google Chrome
Mozilla Firefox
- Open Firefox
- In the address bar, type about:config and press Enter
- In the Search field, enter tls. Find and double-click the entry for security.tls.version.min
- Set the integer value to 3 to force protocol of TLS 1.3
- Click OK
- Close your browser and restart Mozilla Firefox
Opera
- Open Opera
- Click Ctrl plus F12
- Scroll down to the Network section and click on Change proxy settings…
- Select the Advanced tab
- Scroll down to Security category, manually check the option box for Use TLS 1.1 and Use TLS 1.2
- Click OK
- Close your browser and restart Opera
Apple Safari
There are no options for enabling SSL protocols. If you are using Safari version 7 or greater, TLS 1.1 and TLS 1.2 are automatically enabled.