Technical Advisory: Upcoming End of Support for TLS 1.0

thebenrobb

Employee

14-02-2019

Effective March 4, 2019, DTM and Launch will no longer support TLS 1.0 in libraries being hosted by Adobe.  TLS 1.1 will be the minimum allowed version.

This change is being made at the request of our customers so that these solutions can be in compliance with certain data security standards required by companies who do credit card processing.

Effectively this means browsers that do not support at least TLS 1.1 will no longer be able to retrieve a hosted library over an HTTPS connection - thus anything implemented within the DTM or Launch library will no longer be functional on your site in those browsers.  Browsers that do not support any TLS versions above 1.0 are:

  • Chrome 21 and below (current version is 72)
  • Safari 7 and below (current version is 12)
  • Firefox 23 and below (current version is 65)
  • IE 10 and below

After this change, TLS 1.1 will be the minimum supported TLS version.  More info on browser support for specific browser versions can be found here.

We expect the impact to be immaterial for most customers, however we recommend you check your Analytics data to gauge the impact to you.  If you need to support browsers that are on this list, you will need to switch away from having Adobe host your library and host it on your own servers which are still configured to support TLS 1.0.

If you choose this option, you should know that the browsers themselves are completely dropping support for TLS 1.0 and 1.1 in March of 2020, so this will buy you only a limited amount of time.

We regret any inconvenience this causes for you, however, we take security and compliance very seriously and feel that the benefits of this change outweigh the costs.

Sincerely,

- Adobe Activation Team