Product updates

Announcement: TLS > v1.1 enforced after the 1th of July 2019

DMARC Analyzer believes security is very important. To provide best-in-class encryption to our customers, we plan to discontinue the support for Transport Layer Security (TLS) versions 1.0 and 1.1 in the DMARC Analyzer Suite as of July 1th 2019.

We are providing you advanced notice so that you can prepare accordingly. If you are using unsupported clients to connect to DMARC Analyzer after disabling TLS v1.0 and v1.1, you will begin receiving connection error messages. Recent Chrome, Firefox, Edge and IE versions will continue working.

Why are we disabling TLS versions 1.0 and 1.1?

This change is enforced throughout the industry to maintain secure connections that encrypt and protect your sensitive data from malicious breaches. The PCI Security Standards Council has recommended the deprecation for TLS for all payment processing application. Although we do not process payments ourselves (this is done by our Payment Provider which has already stopped supporting TLS versions 1.1 and 1.1), we want to protect our customers using the

TLS helps to ensure your connection is private and secure. TLS 1.0 and 1.1 ensure that your communication stays private. In order to do this, it generates a series of random bytes used to encrypt your connection. TLS 1.0 provides two ways of doing this (CBC and RC4), but several vulnerabilities have been discovered in both of them (including BEAST and the RC4 biases). If you kept using old versions of TLS, someone could theoretically sniff your connection.

What this means for you

The upgrade process will be seamless for most users. DMARC Analyzer has done some initial analysis and the disabling of TLS versions 1.0 and 1.1 should only affect < 1% of our total traffic. You can use the following website to easily determine if your browser supports a version of TLS > v1.1.

If you are affected, make sure to upgrade your browser to the most recent version. If your browser does not support TLS > v1.1 you could consider changing it to of the (main-stream) browsers which does support TLS > v1.1.