TLS 2017 FAQ

Overview

Security is our top priority at WizeHive.  As a proactive precaution, we will be joining most other software vendors in phasing out support for older versions of an encryption protocol called TLS over the next several months across our entire family of products.  This change will not impact the experience for the majority of users, but some people using older browsers may be impacted.  Please read on to learn more.
TLS is an encryption protocol used by web browsers and other systems to make secure connections over the web.  The latest version of this protocol, TLS 1.2, has improved security over earlier versions.  That’s why most service providers have phased out or are phasing out support for the older versions this year and requiring use of TLS 1.2 or newer going forward.
If you and/or 3rd parties using your system (applicants and reviewers) are using a web browser released within the last three to four years, your connections to our platforms are already using the newer protocol.  If not, their browser will provide an error message that says it cannot connect to the server, and will need to switch to a more modern browser.  
Please see the list of browsers with up-to-date TLS support below:

Browsers

Browser Current Version Minimum Version That Will Be Required When That Version Was Released
Google Chrome Chrome 58 Chrome 29 August 2013
Internet Explorer Discontinued IE 10 /11 * 2013
MS Edge Edge 40 All versions
Firefox Firefox 52 Firefox 27 February 2014
Safari Desktop Safari 10 Safari 7, 9 October 2013
Safari Mobile Safari 10 Safari 5, 6
(iOS 5, 6)
October 2011

* Internet Explorer 10 will work but TLS 1.2 support has to be enabled (disabled by default)

Phase-Out Stages

To ensure a smooth transition, we will be scheduling the phase-out across a few stages.
On March 15, 2017, we will remove TLS 1.0 and 1.1 support on some non-critical parts of our infrastructure.  Users with outdated browsers may experience some errors, but most of the service will remain usable.
On May 15, 2017, we will remove TLS 1.0 and 1.1 support on all of our primary systems.   All users must use browsers with support for TLS 1.2 or newer by this date.  This includes external collaborators using forms and portals, such as applicants, reviewers, and recommenders.
On July 17, 2017, we will remove TLS 1.0 and 1.1 support on our API.  Any custom integrations that interact with our API must support TLS 1.2 or newer by this date.
While we understand this could cause a few bumps to a few users, it is a critical update to provide security for your system and is consistent with what other cloud based software vendors are doing.

FAQ

How does this affect me?  What do I need to do?
As long as you're using an up-to-date web browser, you don't need to do anything - your experience using our systems won't be affected.
If you're using an outdated browser that doesn't support TLS 1.2 or newer, you'll need to upgrade to a new browser to ensure that you can continue connecting to our systems as the phaseout proceeds.
If you've developed a custom integration that communicates with the Zengine API, see the section about custom integrations below.
How do I know if my browser supports TLS 1.2?

These browsers and versions will support TLS 1.2.

I've developed a custom integration using the Zengine API.  What do I need to do?
If you've developed a Zengine plugin or a Zapier integration, you're already covered - no changes are required on your end.
If you've developed a custom integration that communicates with the Zengine API from another system, you'll need to make sure your API client supports TLS 1.2 or newer.
Why is the phaseout happening now?
WizeHive is proactive about keeping our products secure.  As web browsers and other software systems have improved their support for TLS 1.2 in recent years, it has become easier for us to upgrade our security requirements with minimal impact to our users.  Many other service providers are also conducting TLS version phaseouts along similar timelines in order to keep their users safe.  
Which systems will be included in the March 15 phase?
The March phase will cover Zengine backend plugin services, the Zengine Billing portal, and an older version of Zengine web forms.
Which systems will be included in the May 15 phase?
The May phase will cover all systems except for the Zengine API.  This includes the main Select and Zengine applications, as well as applications used by external collaborators using forms and portals, such as applicants, reviewers, and recommenders.
Which systems will be included in the July 17 phase?
The July phase will cover the Zengine API, which is used by some custom integrations.
Has there been a security breach or data leak?
No, your data is secure.  The phaseout of old TLS versions is only a proactive measure to ensure the strongest possible security going forward.
Does this mean that using WizeHive products is insecure until the phaseout is completed?

No, all Wizehive products are up-to-date with security patches for TLS vulnerabilities - even on the older versions of TLS.  Moreover, the vast majority of users already connect to us using the more secure TLS 1.2, which our products have supported for years. The phaseout of old TLS versions is only a proactive measure to ensure the strongest possible security going forward. 

Still need help? Contact Us Contact Us