Upcoming changes to supported TLS versions


#1

Hello everybody!

As part of continually improving our FreeAgent API, and ensuring it stays as secure as possible, we’ll be ceasing support for older browsers and older clients using TLS versions earlier than 1.2. As per our 3 month notification policy for major changes, this will not be implemented before 1st August 2018.

Why are we making this change?

TLS 1.2 is considered the safest and most reliable method of delivering encrypted content over the Internet. Both TLS 1.0 and 1.1 have known vulnerabilities and are no longer deemed to be secure, while the PCI Data Security Standard (PCI DSS) requires that you disable TLS 1.0 by June 30, 2018, and recommends migrating to TLS 1.2.

What should I do?

To continue to securely access the FreeAgent API, you’ll need to be using client software that supports TLS 1.2. Most recent browser versions and client libraries already support TLS 1.2, so chances are you won’t need to do anything. However support for TLS versions does vary – especially with older software – so you should check to make sure that what you’re using can support TLS 1.2. For example, Java versions older than Java 8 may require additional configuration or upgrades.

We know for the vast majority of our integrations this will not be an issue.

If you have any concerns or questions please feel free post your questions in the thread below and we’ll be happy to help.

Thanks for reading,

Kevin McConnell
FreeAgent


API access using TLS1 & SSL3 turned off on 1st August
#2

Hello again everybody!

Just a quick follow up to this announcement that the upgrade to TLS 1.2 has now happened.

Thanks,
Peter