Salesforce is disabling TLS 1.0 encryption. Will this affect your Salesforce instance?
Salesforce will change the encryption protocol for HTTPS connections in order to maintain highest security standards. As of today, on 4 March 2017, the TLS 1.0 encryption will definitely be disabled for all live instances. The list of affected functionalities was significantly expanded which means that most companies will be affected. We recommend adjusting your environment as early as possible, so it can support TLS 1.1 and higher. To do so, contact PARX.
Why is TLS 1.0 being disabled?
TLS 1.0 is disabled in order to be able to guarantee the highest security measures and optimize the security of your data as well as adhering to standards within the industry.
Who will be affected?
If you use one or more of the functions in the following list in your Salesforce instance, you will be affected by this change.
When will Salesforce disable TLS 1.0 encryption?
- Sandbox instances: TLS 1.0 was already disabled in June
- As of today live instances 4 March 2017 at 6:30 PM
Continuously updated information can be found here.
What can PARX do for you?
5-Point Action Plan:
We will first analyse your instance to identify whether your are affected by the change and define the necessary actions that have to be taken.
You address the actions that were identified in step 1 and if necessary test them in the sandbox. Optionally, we can do this for you on the basis of an individual offer.
- Live test:
Together with you, we temporarily disable TLS 1.0 on the live instance and check the system in order to recognize any components which might have remained undetected in step 1.
You address any issues identified in step 3.
- Go live:
We permanently disable TLS 1.0 in your instance.
May we help you to adjust your Salesforce instance to TLS 1.1 and higher? Please contact PARX as soon as possible to plan the next steps.
What is TLS 1.0?
The SSL protocol (Secure Sockets Layer) is generally known for securing payments in online shops. The last version of the SSL protocol was 3.0 and was then further developed and standardized under the new name TLS (Transport Layer Security), starting with version 1.0. TLS 1.0 is also considered unsafe today since it can be hacked.
Website operators who transfer confidential information on the Internet, have to migrate from TLS 1.0 to TLS 1.1 or higher.
Salesforce was also migrated to TLS 1.1 and higher and will disable the TLS 1.0 encryption on 22 July 2017. Customers who have not checked their compatibility with TLS 1.1 up to that date risk not being able to access their instance.
Contact us for a meeting without any obligation. We will show you best practice examples from your industry.