Questetra has processing steps such as [Throwing Message Intermediate Event (HTTP)] and [Script Task] which can send HTTP requests to external cloud services and servers (available in the Professional Edition).

As of May 2021 TLS 1.0/1.1 encryption are supported depending on the peer service/server, but TLS 1.0/1.1 encryption will be disabled in the new version (Ver. 13.1) scheduled to be released in July 2021.

Background to the disabling of TLS 1.0/1.1

Questetra is constantly improving and adding functions and taking security measures so that our users can use it more comfortably and safely. A vulnerability has been reported for TLS 1.0 / 1.1, and PCI DSS (credit card industry security standard) recommends abolishing these protocols.

TLS 1.0 / 1.1 have already been disabled in major browsers. In addition, TLS 1.0 / 1.1 is disabled in the following versions when connecting to Questetra.

Encrypted communication to Questetra
(Using Questetra from a browser, accessing the Questetra API, etc.)

Impact and Response to Disabling TLS 1.0/1.1

If TLS 1.2 or higher is not supported by the service or server to which HTTP requests are sent from Questetra, encrypted communication will not be possible.

Most commercial cloud services support TLS 1.2 or higher, so it is unlikely that you will be affected by the disabling of TLS 1.0/1.1. However, if you are connecting to a proprietary service or your own server, you will need to check the support for TLS 1.2 or higher on a case-by-case basis.

If the destination of the HTTP request does not support TLS 1.2 or higher, encrypted communication from Questetra will not be possible, so please check and ensure that your systems are supported.

%d bloggers like this: