Critical Security Maintenance - end of life for TLSv1.0 and v1.1 for manage.kony.com and api.kony.com

• Cloud Management Console (https://manage.kony.com)

  • Removal of TLSv1.0 and v1.1

• Cloud API services (https://api.kony.com)

  • Removal of TLSv1.0 and v1.1

• What is TLS?

  • Transport Layer Security (TLS) is a protocol that provides privacy and data integrity between two communicating applications.

  • It is the most widely deployed security communication protocol used today and used for web browsers and other applications that require data to be securely exchanged over a network.

• What is going to happen?

  • TLS 1.0 and 1.1 are both fairly outdated versions of the TLS protocol. Many improvements have been made since the release of these versions and upgrading to the current standard (TLS 1.2) is now considered the safest and most reliable method of delivering encrypted content over the Internet.

  • Furthermore, the Payment Card Industry Data Security Standard (PCI-DSS) requires disabling the use of any SSL/TLS 1.0 implementations by 30th June 2018. TLS 1.1 will still be accepted by PCI although they strongly recommend using TLS 1.2. Given the vulnerabilities to which TLS 1.0 and 1.1 are susceptible and the recommendations provided by the PCI council, we’ll be disabling support of both of these versions of the protocol and requiring v1.2 or higher of the TLS protocol.

• Potential Impact

  • Starting from 30th June 2018 23:59 UTC, your web browser should be capable to support TLS 1.2 in order for you to be able to connect to https://manage.kony.com and https://api.kony.com

  • Kony Visualizer will be affected and you will not be able to authenticate unless a hotfix is installed.

  • We do not anticipate that any customer runtime environments (e.g., Kony Integration Server, Kony Sync services) or any multi-tenant services (e.g., Engagement, Management) will be affected by the TLS connection security policy changes we will be applying to https://manage.kony.com and https://api.kony.com

• Recommended Actions

  • The major internet browsers support TLS 1.2. We advise all customers to check the capabilities of their browsers to ensure that this change will not affect your connections. Below are some helpful online tools that should be able to help you confirm your browser capabilities:

  • • https://www.howsmyssl.com
  • • https://caniuse.com/#feat=tls1-2

  • For our customers that are using Kony Visualizer client, we strongly advise you to read our Kony Basecamp Article, which will guide you on how to confirm and/or download the latest hotfix and any additional instructions that you might need to perform.

  • If you have any additional questions, please ask in Kony Basecamp. If you are experiencing any issues that cannot be resolved by following the instructions above, please open a support case so we can attend to them as soon as possible.

Please refer to the instructions above to ensure that your browsers and clients (including Visualizer) have been updated to be able to connect using the TLS v1.2 protocol. Failure to do so could result in your inability to log in to https://manage.kony.com or use https://api.kony.com until you have done so.