Effective Date: 1st August 2025
Overview
To ensure customer connections to Aptem remain secure and to keep up with industry best practices, we will be deprecating the following TLS 1.2 cipher suites used by older browsers, as of 1st August 2025:
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
Reason for deprecation
We are making this change to improve your online security. The cipher suites being removed are older methods for encrypting data that are not as strong as the newer alternatives available today. Please note that these ciphers are not insecure but are considered weaker than other modern ciphers and are therefore being retired as part of our regular security review to ensure we are using robust and modern encryption standards. This update helps protect against modern threats and keeps your sensitive information safer.
Impacted browsers
We have identified a very small minority of customers use browsers that rely on these older cipher suites. In particular:
- Internet Explorer 11: IE11 on older Windows platforms such as Win 7/8.
- Safari 6/7/8: Safari on older iOS platforms.
Action required
To continue enjoying access to Aptem and a secure connection, please ensure you are using a modern browser with the latest patches, such as Chrome, Edge or Firefox that supports the latest encryption standards. We recommend using a browser that supports one or more of the following cipher suites:
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Please contact your CSM representative if you have any concerns with this.
Related article: Which browsers are supported on the Aptem® platform?