TLS 1.2 (Transport Layer Security) is one of the latest and most secure versions of the SSL/TLS protocol. It is used to prevent, among other dangerous actions, message tampering, interception, and forgery.

eFront supports the use of HTTPS to ensure the secure exchange of information to and from your portal. In alignment with the industry’s best practices on security and data protection, eFront implemented the TLS 1.2 encryption and removed the older HTTPS supports.

Browsers

To turn TLS 1.2 active in your web browser, update it to the latest version or make sure you use the following versions or newer:

• Google Chrome - v38 or higher

• Mozilla Firefox - v27 or higher

• Apple Safari - v7 or higher

• Microsoft Edge

• Microsoft Internet Explorer - v11 or higher

Notes:

- Google Chrome: TLS 1.2 will also work on versions between 22 and 37, but only when running it on Windows XP SP3, Vista, or more recent, OS X 10.6 (Snow Leopard) or newer (for desktops), or Android 2.3 (Gingerbread) or newer (for mobile).

- Mozilla Firefox: TLS 1.2 will also work on versions between 23 and 26, but not by default.

- Internet Explorer: IE versions from 7 to 10 need the TLS 1.2 to be enabled manually (Tools > Internet Options > Advanced). This setting can be applied to multiple users by using a group policy.

Mobile

• Android: v5.0 or higher to be enabled by default (starting from 4.4 (KitKat) to 4.4.4 enabled but not by default)

• iOS: v5.1 or higher 

REST API

To use our API, first make sure that your implementation supports TLS 1.2 encryption. The general requirements, depending on your platform of choice, are:

• OpenSSL - v1.0.1.j or higher

• cURL - v7.34.0 or higher

• Network Security Services (NSS) - v3.15.1 or higher

• .NET Framework - v4.6.1 or higher

Note: .NET Framework v4.5 also supports TLS 1.2 if you set it accordingly.