The team at Certain continuously seeks to improve the security of our products and keep with industry best practices. On June 30, 2022 we will strengthen the encryption techniques that are used to create secure connections to the following products:
- Certain Platform
- Certain API
- Signal
- SSO
Note that Certain Touchpoint and its API are not included, and all applications Certain natively integrates with have been confirmed as supporting the necessary Cipher suites. The list of integrations not affected includes Signal integrations with ON24, Zoom, Eloqua, Marketo, and Salesforce, as well as SSO integration with OKTA.
What steps do I need to take?
We need you to ensure that any integrations you have configured between your systems and Certain using the features listed above can support the following encryption cipher suites:
- TLS1.2-ECDHE-ECDSA-AES256-GCM-SHA384
- TLS1.2-ECDHE-RSA-AES256-GCM-SHA384
- TLS1.2-ECDHE-ECDSA-AES256-SHA384
- TLS1.2-ECDHE-RSA-AES256-SHA384
- TLS1.2-DHE-RSA-AES256-GCM-SHA384
At least one of the provided ciphers must support all applications integrated with Certain. If none of these ciphers are supported for an application integrated with Certain, that application will NO LONGER be integrated as of the date of the upgrade, June 30, 2022.
Please reach out to the team within your organization that manages your integrated applications. That team should be able to confirm whether one of the cipher suites listed above is supported.
You can also search available support material, or reach out to the applications support team to confirm. Eloqua, an application commonly integrated with Certain through Signal, has a good example of help documentation you can find online indicating supported cipher suites.
If you have any questions, please contact help@certain.com
Comments
0 comments
Please sign in to leave a comment.