Genesys Cloud - Main

 View Only

Sign Up

  Thread closed by the administrator, not accepting new replies.

  • 1.  TLS 1.3 support for BYOC-C Trunks

    Posted 03-13-2023 17:02
    No replies, thread closed.

    Hi, currently TLS 1.2 is supported. We have a compliance requirement to make use of TLS 1.3. Any ideas when TLS 1.3 would be supported?


    #Telephony

    ------------------------------
    Anish Sharma
    Datacom Connect Limited
    ------------------------------


  • 2.  RE: TLS 1.3 support for BYOC-C Trunks

    Posted 03-13-2023 22:45
    No replies, thread closed.

    Hi Anish

    Out of curiosity, which compliance standard has this requirement come from?  PCI?  Or something else?  



    ------------------------------
    Vaun McCarthy
    ------------------------------

    Original Message


  • 3.  RE: TLS 1.3 support for BYOC-C Trunks

    Posted 03-13-2023 23:23
    No replies, thread closed.

    NZISM (https://nzism.gcsb.govt.nz/ism-document/#Section-15746)



    ------------------------------
    Anish Sharma
    Datacom Connect Limited
    ------------------------------

    Original Message


  • 4.  RE: TLS 1.3 support for BYOC-C Trunks

    Posted 03-14-2023 03:11
    Edited by Peter Buzas 03-14-2023 03:11
    No replies, thread closed.

    Hi Anish,

    I checked the referenced document and could found 5 occurrences of TLS 1.3 mentioned in there however could not find a section where it would be stated that TLS 1.3 is mandatory.

    Best regards,

    Peter



    ------------------------------
    Peter Buzas
    Genesys - Employees
    ------------------------------

    Original Message


  • 5.  RE: TLS 1.3 support for BYOC-C Trunks

    Posted 03-14-2023 03:47
    No replies, thread closed.

    Hi Peter, as per below:

    Using TLS

    17.4.16.R.01.
    Rationale

    Whilst version 1.0 of SSL was never released, version 2.0 had significant security flaws leading to the development of SSL 3.0.  SSL has since been superseded by TLS with the latest version being TLS 1.3 which was released in August 2018. SSL is no longer an approved cryptographic protocol.

    17.4.16.C.01.
    Control System Classifications(s): All Classifications; Compliance: Should [CID:2598]

    Agencies SHOULD use the current version of TLS (version 1.3).

    17.4.16.C.02.
    Control System Classifications(s): All Classifications; Compliance: Should Not [CID:2600]

    Agencies SHOULD NOT use any version of SSL.



    ------------------------------
    Anish
    ------------------------------

    Original Message


  • 6.  RE: TLS 1.3 support for BYOC-C Trunks
    Best Answer

    Posted 03-14-2023 05:27
    Edited by Jason Kleitz 08-14-2025 13:44
    No replies, thread closed.

    Thanks for the clarification Anish! If I understand the quoted sections correctly, then:

    17.4.16.R.01 is just stating that any form of SSL is not secure, no reference to TLS 1.x other than stating that TLS 1.3 is the latest version.

    17.4.16.C.01 is recommending (SHOULD) TLS 1.3. I may be wrong but this does not seem to say that TLS 1.2 is no longer allowed, only that TLS 1.3 is preferable.

    17.4.16.C.02 is reinforcing that no version of SSL should be used, again to mention of any TLS 1.x versions.

    My personal opinion is that TLS 1.2 is the norm these days and once AWS starts fully supporting TLS 1.3 I would expect that Genesys Cloud will also introduce full TLS 1.3 support.



    ------------------------------
    Peter Buzas
    Genesys - Employees
    ------------------------------

    Original Message


Related Content