Recently there was an encryption support change from SHA1 to SHA2. This is covered in links like below:
This may give rise to the question does TIM support SHA2. The answer is yes for those customers using APM 10 and hotfixes supporting the TLS 1.1/1.2 new functionality.
For other releases, you may experience an increase in APM SSL decode failures. Support can investigate further. We would need a pcap and the output of
openssl x509 -text -in [your ssl certificate]
A KB will follow later this week.