There is an interesting
article over on PCWorld.com about a pending change in the NIST standards
for federal web site security protocols. The current standard is the use of Transport Layer Security (TLS 1.0). NIST
is expected to change that to TLS 1.1 and/or 1.2. Now most Federal web sites do
not require security settings as they are one-way information providers. Sites
providing secure communications (like the CSAT tool) will be affected by this
change.
We can be fairly
sure that the folks at ISCD will make an announcement when this change is
applied to their CSAT sites. In the meantime it makes sense to verify that the
computers that you used to communicate with CSAT are all capable of using TLS
1.1 or 1.2. Check the “Security Settings” under the “Advanced” tab on the
Internet Options on Internet Explorer (I’m sorry I don’t know the technique for
other browsers; I continue my love-hate relationship with MS).
More when this
actually comes to pass.
Posts
No comments:
Post a Comment