RSA announces end of support for specific RSA eFraudNetwork Ciphers – RSA Adaptive Authentication (On-Premise) 6.x – Customer Action Required
RSA is discontinuing support for certain ciphers used in RSA eFraudNetwork service within RSA Adaptive Authentication (On-Premise) 6.x .
The change is applicable for customers using RSA eFraudNetwork service through RSA Adaptive Authentication (On-Premise) 6.x, that connect to the following eFraudNetwork URL: lists.efraudnetwork.net site.
The change in production will take place on Sunday, September 24, 2017.
What is the change?
During the client/server SSL/TLS channel negotiation, a common list of supported ciphers must be negotiated between the client and the server. In order to achieve a stronger communication channel between the two sides, RSA will remove the following cipher components from negotiation:
ADH - Anonymous Diffie Hellman Key Exchange
EXPORT40 – Ciphers of 40 bit export-grade strength (weaker ciphers which are permitted for export)
EXP - Cipher length of 40 or 56 bits export-grade strength
LOW - Cipher strength of 64 bits
Customer Action Required
Customers should make sure their system supports more recent cipher suites. For example:
RSA will no longer support the TLS1.0 suite of cryptographic protocols.
RSA will be working with you to ensure continuity of service.
For further information, contact RSA Customer Support Center.