How TLS impacts Salesforce?

How TLS impacts Salesforce?

When we are working in a pool of networks i.e INTERNET, we need a protocol. Yes, you might have heard this term in your High School Lectures known as Transfer Control Protocol and Internet Protocol.

TCP plus IP(1)

With the evolution of the Internet, there is a huge need to protect our Privacy and security which is at stake these days due to a huge number of Internet-based attacks by the Hackers. So where there comes security, the term TLS is used. When we communicate via our browsers on the Internet, TLS protects us. It encrypts our online communication.

Let's see how it has evolved :

-------------------------------------------------------------------------------------------------------------------------------------------------

1.) 1993: In 1993 came the very first security protocol known as SNP i.e "Secure network protocol API".

2.) 1995: In 1995 came the enhanced security protocol known as SSL i.e "Secure Socket Layer".

3.) 1999: SSL evolved to become "TLS 1.0" i.e the most secured Layer known as "Transport Layer Security".

-------------------------------------------------------------------------------------------------------------------------------------------------

But nothing remains secured with the evolving technology.People find new ways to hack existing securities. Hence updation is of utmost importance. You might have been thinking is it a class of your Network Security. No, but its concepts are applied in Salesforce. Let me explain how it happens!!

When we try to access our Salesforce account using a browser or any 3rd Party App(via Integrations). All such will need a "secure connection" to "Salesforce Platform". This is where TLS plays its role.

"Salesforce is requiring an upgrade to TLS 1.1 or higher beginning July 22, 2017, in order to align with industry best practices for security and data integrity. For other Salesforce Services such as Marketing Cloud/Heroku/Pardot/SalesforceIQ/etc, TLS 1.0 disablement is currently being evaluated. More information will follow once plans and deadlines have been finalized."

It means that if you are using "TLS 1.0" in your browser or in a 3rd party client or app that is integrated with Salesforce then you won't be able to log into Salesforce or to do integrations with the platform.

TLS 1.0 has support for existing Salesforce Production orgs and you can re-enable it in prod orgs created after summer of 2016, but TLS 1.0 will not be supported anymore for sandboxes.

  1. Go to --> Setup
  2. Under Build section ---> Click on "critical Updates", and
  3. Search for [Require TLS 1.1 or higher for HTTPS connections] in order to re-enable it.

Though it is not affecting you right now, If you will not take required steps to update yourself to the latest security practices, you will soon be facing issues related to it.

 

Responses

Popular Salesforce Blogs