DocuSign is deprecating TLS 1.0 Encryption Browser Support


Following industry best practices, DocuSign will end TLSv1.0 support effective June 25, 2018. This date aligns with the deadline the PCI Security Standards Council has set for companies that wish to remain PCI Data Security Standard (PCI DSS) compliant.  Other leading SaaS vendors, including Salesforce, Box, and PayPal, plan to end support for TLSv1.0 in June.

Test Your Browser's TLS Support at SSLLabs

 

If your browser fails to pass the TLS, the best solution is to update your web browser to the latest version. If you are unable to update your browser, then please follow the instructions below to update your browser’s security settings.

Internet Explorer

  1. Click the settings (gearbox) menu at the top right (may be called “Tools”)
  2. Selected “Internet Options” from the dropdown menu
  3. Go to the “Advanced” tab on the new window
  4. Scroll down to the Security Category and manually check the following options.
  5. Make sure to select:
  6. Use TLS 1.1
  7. Use TLS 1.2
  8. Click OK, close your browser, and restart Internet Explorer

Google Chrome Browser (PC)

  1. Open Google Chrome
  2. Open the “Settings” menu
  3. Scroll down and select “Show advanced settings…”
  4. Scroll down to the Network section and click on “Change proxy settings…”
  5. Go to the “Advanced” tab on the new window
  6. Scroll down to the Security Category and manually check the following options.
  7. Make sure to select:
  8. Use TLS 1.1
  9. Use TLS 1.2
  10. Click OK, close your browser, and restart Google Chrome

Firefox Browser (PC & Mac)

  1. Open Firefox
  2. In the address bar, type “about:config” and press Enter
  3. Accept the risk by clicking the button
  4. Search for the entry “security.tls.version.min”
  5. Double click the Preference Name and enter “2” into the popup box
  6. Click OK, close your browser, and restart Firefox
 

TLSv1.0 and these cipher suites are utilized by a small set of customers to support legacy integrations. These integrations will need to be updated to support secure, modern ciphers and is often as easy as recompiling the solution with updated libraries. The PCI Security Standards Council has published detailed guidance for migration from SSL/early TLS. It is available here: www.pcisecuritystandards.org/documents/Migrating-from-SSL-Early-TLS-Info-Supp-v1_1.pdf

Related