TLS modernisation for a safer Internet
- Are you using spatial data services? If yes, read on to find out what this change means for you
- TLS is the acronym for Transport Layer Security; it’s a protocol that encrypts and authenticates secure connections across the web
- TLS 1.0 and 1.1 will be formally deprecated
- Apple, Google, Microsoft, and Mozilla have announced they plan to disable TLS 1.0 and 1.1 support in their browsers in the first half of 2020
- We will also be removing support for TLS 1.0; applications and web browsers using TLS 1.0 will not be able to connect to spatial data services (SLIP) and maps when support is removed
ArcGIS Online will be upgrading to TLS 1.2 in February 2019
Spatial Data Services
This change impacts the spatial data services from the Shared Location Information Platform (SLIP) run by Landgate under the data.wa.gov.au banner.
What is TLS?
TLS stands for Transport Layer Security. It’s a protocol that encrypts and authenticates secure connections across the web. It provides privacy and data integrity for web browsers and other applications that require data to be securely exchanged over a network.
The versions of TLS are TLS 1.0, 1.1, 1.2, and 1.3.
What’s happening to TLS 1.0 and 1.1?
TLS 1.0 will be 20 years old in January 2019.
TLS 1.2 was published 10 years ago to address weaknesses in TLS 1.0 and 1.1. It’s been the recommended version for protocols since 2008 and has been widely adopted. Newer versions of TLS are more advanced, better performing and provide a more secure connection. TLS 1.2 is broadly supported across modern browsers and this means a safer browsing experience for everyone.
It is expected that the Internet Engineering Task Force (IETF) will formally deprecate TLS 1.0 and 1.1. When that happens, protocol vulnerabilities in these versions will no longer be addressed by the IETF.
What does this mean for me?
We will be removing support for TLS 1.0. Applications and web browsers using TLS 1.0 will not be able to connect to spatial data services (SLIP) and Maps when support is removed.
This change is in line with the announcement that Apple, Google, Microsoft, and Mozilla plan to disable TLS 1.0 and 1.1 support in their browsers in the first half of 2020.
Please note that this change is not happening soon, but it is a heads up that you need to begin to move off TLS 1.0 (and TLS 1.1 in the future) and make sure your applications and browsers can support TLS 1.2.
If you are using a recent version of Chrome or Firefox, or Internet Explorer 11 to access spatial data services (SLIP), then you are most likely already connecting with TLS 1.2 and will not be affected by this change.
If you have queries or issues, please contact Landgate’s Business Sales and Service Team on +61 (0) 9273 7683 or email@example.com.
Esri ArcGIS users
The ArcGIS platform web and API connections use TLS as a key component of their security. HTTPS (web) uses TLS as a key component of its security.
ArcGIS Online will be upgrading to TLS 1.2 in February 2019. When this occurs, ArcGIS Online services will only accept connections using TLS 1.2 and is likely to affect most ArcGIS software and custom solutions.
If you need more information, please refer to support.esri.com/en/tls.