In our continued effort and commitment to securing our software and services, BCC Software will be discontinuing support of Transport Layer Security (TLS) protocols TLS 1.0 and TLS 1.1, as well as any HTTP (non-SSL) connections. TLS is the protocol used to secure traffic over computer networks. We are providing this notification now to give you ample time to review, and if necessary, upgrade your systems to support TLS 1.2.
What This Means to You
This change means that all BCC Software websites and services using HTTPS will require connections to use the TLS 1.2 protocol. After the change, BCC Software servers that require using the HTTPS protocol will block any traffic requests not using TLS 1.2. This includes our customer portal, documentation, and marketing sites.
To continue accessing these websites and services, you simply need to ensure that you are using recent web browsers and operating systems which all support TLS 1.2 by default. This means that BCC Software users connecting to our websites with the latest browsers should not be impacted by this change. However, if your browser or web services client software does not support TLS 1.2, your connections to BCC Software services will no longer work.
If you’re using our desktop applications (examples include BCC Mail Manager™ and BCC Bulk Mailer® products) or client libraries (examples include BCC Architect and Integratec), you may be required to download a newer version of your browser. If you are utilizing custom software written directly against our web services and APIs, you will want to make sure that the client libraries used for connecting to BCC Software services use HTTPS and support TLS 1.2.
How to Verify if You Need a Change
There are many services you can use to verify if your browser or OS supports TLS 1.2 or above. For example, SSLLabs.com provides a free service for testing browsers and servers.
In addition, your browser also needs to be configured correctly. Instructions for configuring your preferred browser can be found here: https://www.comodo.com/e-commerce/ssl-certificates/tls-1-deprecation-browsers.php.
As we continue to test our applications internally, we will send additional communications as we ascertain which will require our customers to download a new software version in order to meet the TLS 1.2 requirement.
Additionally, we will be providing test services to customers who directly access our API (BCC Architect, Integratec® API Platform, and ZIPFOURce™ API) over the course of the next few weeks for those customers to begin testing their internal software they are using to connect with our Web Services and/or API.
The following applications and services are impacted by this requirement:
- BCC Software Websites (Customer Portal, PAF Management, Documentation, Marketing, Support)
- BCC Bulk Mailer
- BCC Mail Manager
- BCC Architect and BCC Architect Web Services
- Track N Trace®
- Integratec API Platform
- ZIPFOURce™ API and Web Services
- Data Services (previously known as Infuse Services)
This communication is a notice that we will be requiring TLS 1.2 in the near future. We recommend you begin the process of evaluating and updating your systems now to ensure uninterrupted processing. In the upcoming weeks, we will communicate additional details including a cutover date planned for early Summer 2020.
If you have any questions or need additional information, please contact Customer Support at firstname.lastname@example.org or 800 624-5234.