Effective July 1, 2020, Numetric will no longer support any data connections utilizing TLS 1.0 or 1.1 cryptographic protocols. All data connections must utilize TS 1.2 or higher to establish a secure data connection with Numetric’s data platform.
What is TLS?
TLS is a cryptographic protocol that provides authentication and data encryption between different endpoints (e.g., a client connecting to a web server). New versions of each protocol have been released to address vulnerabilities and support the strongest and most secure cipher suites and algorithms. As a best practice, you should configure your servers to support the latest protocol versions to ensure you are using only the strongest algorithms and ciphers, but equally as important is to disable the older versions.
Why is Numetric discontinuing support for TLS 1.0 and 1.1?
Continuing to support old versions of the protocols can leave you vulnerable to downgrade attacks, where hackers force connections to your server to use older versions of the protocols that have known exploits. This can leave your encrypted connections (whether between a site visitor and your web server, machine to machine, etc.) open to man-in-the-middle and other types of attacks. Browser makers across the board have either already dropped or are in the process of dropping support for TLS 1.0 and 1.1 security protocols, instead of adopting TLS 1.2 or higher.
How can I ensure that my data connections are secure and up-to-date?
The articles below outline the process for Microsoft SQL, and MySQL respectively.
Microsoft SQL
MySQL
If you have any questions about this or any other topic, please contact our support team: Support@numetric.com