Introduction

In an effort of continuous improvement, Octopus is preparing to upgrade the security level of communication between client applications and their servers.

Concretely, by the end of 2022, Octopus' servers will no longer accept communication using outdated encryption methods; TLS 1 and TLS 1.1 will be disabled.

Users using outdated applications will no longer be able to communicate with our servers.

What is TLS

TLS (Transport Layer Security) is a technology used to encrypt communication between a client application and its server.

Like any security subject, standards regarding TLS are constantly evolving.

Versions 1 and 1.1 are obsolete and their usage should be discontinued. 

Some Numbers

The vast majority of incoming connections on our servers (99.7%) already use TLS 1.2. Knowing that our servers process more than 7,000,000 request each day, this is indeed a vast majority of connections that are already compatible.

Impact on your Business

All Octopus applications have already been migrated to use TLS 1.2. Modern browsers that are “evergreen” already are fully compatible with TLS 1.2

• Google Chrome
• Mozilla Firefox
• Opera 
• Microsoft Edge

Although Microsoft Internet Explorer 11 is not considered "evergreen", our tests show that in most cases, the use of this browser, on Windows 10, with all updates installed, communicates using TLS 1.2.

The Operations team is analyzing the approximate 20,000 daily calls that do not use TLS 1.2 in order to understand the reason and take action to correct the situation.

In the coming weeks, it is therefore possible that you will receive a communication from a member of the Octopus team to understand why some of your users are still using unsecured connections with our servers.

We will work with you in order to fix the issues before we disable the support to TSL 1 and 1.1.