To continue delivering secure services to our customers, and to maintain compliance with industry governance and standards, DataTrace® Information Services will update to Transport Security Layer (TLS) 1.2 encryption protocol for all our products on January 3, 2020.
This means that you must be on the latest client version (2.51.36.09.148479 or higher) for DataTrace to function. If you are a DataTrace Gateway (DTG) or TitleIQ™ (TIQ) customer, you must leverage code libraries that support TLS 1.2.
What is TLS and why would an update be necessary?
TLS stands for “Transport Layer Security.” It is the security protocol that allows computers to communicate over the internet securely, without the transmissions being vulnerable to anyone they aren’t intended for. There are several known weaknesses in TLS 1.0 and as a result many websites and internet services are now starting to require the use of TLS 1.2. Many services already support TLS 1.2 and have indicated that they will eventually refuse TLS 1.0 connections.
How will I be impacted?
After DataTrace upgrades to TLS 1.2, older client versions will not allow you to login. For DTG customers, any inbound connections to or outbound connections from your organization that rely on an earlier version will fail.
How can I avoid a service disruption if I access DataTrace?
When you login to the DTS application, confirm you have a green check mark in the lower right-hand corner of the DTS application window.
Contact IT Support to upgrade to the current DTS Client (2.51.36.09.148479 or higher).
If your organization uses DTG
If your integrations to DTG do not leverage code libraries that support TLS 1.2 your integrations will fail once TLS 1.0 is disabled.
This TLS upgrade is an industry standard and most companies have completed these upgrades during 2019. Due to recognized security issues with the TLS v1.0 protocol, industry and security professionals have recommended discontinuing the use of TLS v1.0 and upgrading all communications.
What is compatible with TLS 1.2:
For DTG integrations, the following code libraries are known to support TLS 1.2, however these are guidelines and your validation is required.
- OpenSSL v1.01
- JDK v7 onwards
- .Net Framework 3.5.1 onwards (.Net 4.5 natively supported TLS1.2, and Microsoft released a package to support TLS 1.2 in 3.5.1, available here)
- Windows 7 onwards
- Windows Server 2008 R2 onwards
- Most common Linux distributions rely on OpenSSL
If you need assistance contact DataTrace Client Services at 800.221.2056 for additional information.