A vulnerability named POODLE was discovered in SSL 3.0. POODLE or Padded Oracle On Downgraded Legacy Encryption that gave a blow to cloud security. Last year, Microsoft had finally taken the decision to turn off the support for all TLS protocols older than TLS 1.2 and SSL v3 last for better cloud security. A decision that was taken to protect systems against similar POODLE attacks as in the past. It wasn’t easy to get rid of TLS 1.1 and TLS 1.0 so soon, most Microsoft OS and applications had these two protocols hardcoded for a better interoperability experience. Microsoft had to face a bitter backlash as most organizations weren’t ready for the “Change” in its attempt to improve cloud security.
TLS and the Cloud
Now Microsoft has decided to turn down support for TLS 1.0 for Office 365 and here’s the real news for CSPs. Starting 1st June, 2020 ( oh yes, less than a year left), Office 365 is retiring TLS 1.0 and 1.1 (Better perform your TLS version check and get to know your office 365 TLS port today!). The much promised change is going to be implemented for sure this time and all you CSPs out there, it’s high time to upgrade many applications at your end in order to keep things going smooth. Here’s a list of things that won’t be supported from now on, so, for better cloud security, you need to keep an eye if your organization is still using it:
- Firefox version 5.0 and earlier versions
- Android 4.3 and earlier versions
- Internet Explorer 10 on Windows Phone 8
- Safari 6.0.4/OS X10.8.4 and previous versions
- Internet Explorer 8-10 on Windows 7 and earlier versions
Additionally, Microsoft Teams Room app version 220.127.116.11 or later must be used for conferencing. For Skype for business Server, Skype for Business Server 2015 CU9 (released May 2019) and Skype for Business Server 2019 CU1 (released July 2019) should be deployed organization-wide.
Regarding Infrastructure changes, it is essential to use TLS 1.2 for all inbound and outbound connections in case of on-premises infrastructure for hybrid solutions or ADFS. There are many guides and a detailed whitepaper out there for a deep understanding on phasing out TLS 1.0 and TLS 1.1 from your organization.
MachPanel and Automation Module for Microsoft CSP
Whether you wish to manage lifecycle of your Direct and Indirect CSP Business or automate it successfully, MachPanel does it for you smoothly. The Automation module for Microsoft CSP is designed to make sure CSPs get all the assistance they need for a fully automated Cloud business. MachPanel also takes into account the Microsoft enhancements on weak protocols and the experts at MachSol are more than ready to guide you against attacks like POODLE and others like GOLDENDOODLE. With MachPanel, you can do much with less from a single user friendly interface like control the billing, showcase, bundle and sell your products, monitor business progress with a BI Dashboard and much more. The experts at MachPanel can also guide you through your office 365 TLS port checking and TLS version check.
Stick around for more updates and get your business equipped with MachPanel, for a safer and updated Cloud business.