12th November 2020

Disabling TLS v1.0 & v1.1 on the OpenShift Router for APPUiO Swisscom DCS, scheduled 5 months ago

Transport Layer Security (TLS) protocols are used for encrypted communications across networks. TLS versions 1.0 and 1.1 contain known security vulnerabilities, which may be susceptible to attacks.

The industry is already taking steps and pushing for more security by exclusively allowing TLS 1.2 or later versions. Major web browsers such as Google Chrome, Microsoft Edge, Safari, and Mozilla Firefox have already deprecated TLS 1.0 and 1.1 on March 31, 2020.

Therefore we are going to disable TLS versions 1.0 and 1.1 for the OpenShift Router by December 1, 2020. This change affects all the incoming cluster traffic. Connections from older browser versions than Firefox 27, Chrome 30, IE 11 on Windows 7, Edge, Opera 17, Safari 9, Android 5.0, Java 8 will not be able to establish connections anymore.

Action required:

Please make sure that your end users use at least Firefox 27, Chrome 30, IE 11 on Windows 7, Edge, Opera 17, Safari 9, Android 5.0, Java 8.

If you need support with these changes, we are pleased to help you. Please contact us under support@vshn.net or via the ticket system.