Ability to have ARCOT (CA Strong Authentication) support TLS 1.1 and TLS 1.2

Idea created by gswanger on Apr 14, 2016
    Delivered
    Score4
    • SuziSG
    • CBertagnolli
    • Josh Perlmutter
    • gswanger

    Currently ARCOT does not support TLS 1.1 and TLS 1.2.  Many banks and payments within the banking community are requiring that their users disable TLS 1.0 and move to TLS 1.1 and TLS 1.2 to mitigate the security risk associated with POODLE and BEAST virus.  The Office of the Comptroller of the Currency has had increased customer concern that the CA Strong Authentication does not able TLS 1.0 to be disabled and TLS 1.1 or TLS 1.2 to be used.

     

    CA Case was opened (00352748) and sent to engineering with ticket de159012  for possible enhancement and also raised here in the CA Strong Authentication Community.

     

    CA as a security provider, it would seem that to enable and allow a higher version of TLS on their existing products would help customers mitigate the risks of existing virus's on TLS 1.0.