Why Will Browsers Using TLS 1.0 Protocols No Longer Be Accepted as of June 1?
The security and privacy of your information is vital to us, and we are committed to meeting and exceeding industry best practices for security. TLS stands for “Transport Layer Security” and it is the protocol that allows two applications (like your browser and our Web server) to exchange data securely. TLS 1.0 is particularly vulnerable to outside attackers and is no longer a trusted security protocol.
Starting June 1, 2018, VelocityEHS will prevent old browsers and other devices (e.g. smartphones) using the encryption protocol TLS 1.0 from accessing EHS.com, MSDSonline.com, and other VelocityEHS Web properties.
Going forward, to access our website, every computer or device used to connect to VelocityEHS or MSDSonline properties will need to use an updated browser with encryption protocols TLS 1.1 or above. Most people use an updated browser already and will not be affected by the change. However, if any of your browsers or devices do not support TLS 1.1 or above, we recommend updating immediately in order to maintain access.
How Do I Check My Browser?
Here are two websites offering free browser tests (it only takes a few seconds):
How Do I Update My Browser?
We recommend updating to the latest versions of your preferred browsers. Here are links to the most popular browsers:
You may be able to configure your current browser to be compatible with TLS 1.1 or TLS 1.2. Comodo.com offers these excellent resource for configuring your current browser:
Note: Very old browsers may not be compatible TLS 1.1 and above
What is PCI Compliance and How is it Driving this Change?
The Payment Card Industry (PCI) is one of the key drivers behind the disablement of TLS 1.0. The PCI has a Data Security Standard (DSS) for companies that accept credit card payments online. The PCI DSS no longer allows for transactions using TLS 1.0.
That means the changes VelocityEHS is instituting are part of a worldwide movement to improve Web security. The updates you make to your browser to align with VelocityEHS will apply to websites all over the Internet, especially those that accept credit card payments and comply with PCI DSS.
To learn more about the PCI DSS, visit: https://www.pcisecuritystandards.org/document_library