Reply
Highlighted
Posts: 321
Topics: 5
Kudos: 36
Blog Posts: 5
Ideas: 0
Solutions: 26
Registered: ‎11-09-2011

ColdFusion and TLS Support

[ Edited ]

As you may be aware, PCI DSS 3.1 requires early TLS to be disabled by June 30, 2016.

We're already working on our plans for meeting this requirement, and will make announcements as dates become more firm.

 

But I wanted to see what people had to say about ColdFusion support of TLS 1.1 and 1.2--when I came across this article:

http://www.coldfusionmuse.com/index.cfm/2014/12/8/colfusion-jvm-versions-sslv3-tls

 

It covers which versions of ColdFusion and Java, together, support which TLS versions, and what settings you need.

 

If you are a ColdFusion developer, please take a few moments to review this article, and keep its details in mind as you develop your own TLS remediation plans. Thanks.

--
"Move fast and break things," out. "Move carefully and fix what you break," in.