In order to keep your communication with Zoho with more security, we will be retiring the support for older TLS versions 1.0 and 1.1 by 31 August 2018, and our users need to upgrade to TLS v1.2 to enjoy uninterrupted and secure transfer of their data.
What is SSL/Early TLS?
Transport Layer Security (TLS), formerly Secure Sockets Layer (SSL), is the old security standard for setting up connections between systems. It requires encrypting information in transit to ensure privacy, and authenticating the systems involved to make sure information doesn’t end up in the wrong hands.
Why is the update necessary?
TLS doesn’t meet security standards anymore. It has some vulnerabilities without viable solutions, so it’s being replaced with a more secure protocols.
According to PCI standards, TLS v1.2 is the most advanced protocol yet, as it eliminates the vulnerabilities faced by the previous versions, i.e, TLS v1.0 and v1.1. Everyone who uses secure servers and browsers to access the data and API from Zoho, are expected to make this update to protect their data security.
What is your part as an end user?
As an end user, if the customer is accessing our applications from any web browser, it must belong to one of the following specifications to support TLS 1.2
Internet Explorer version 11 or above ( For IE 9 & IE 10 settings should be changed on the customer end to enable TLS1.2 )
Google Chrome version 30 or above
Mozilla Firefox 27 or above
Safari 7 or above
If the customer accesses our applications through a mobile platform, it must belong to the following specifications:
Google Android version 4.1 or above
iOS 5.1 or above
Windows Phone 8.1 or above
If the customer is using any of the following programming languages, they must upgrade to communicate with our API:
.NET 4.5 and below
.NET 4.5 (settings should be changed to enable TLS 1.2)
Please refer this link for further details regarding the requirements. You can also use this link to test if your browser supports TLS v1.2. Furthermore, for API users, we will be initiating individual mail communication.