In compliance with PCI DSS requirements, CareerBuilder is upgrading our web server protocols to require TLS 1.2 connections by June 30.
Read on to learn more about this upgrade, what CareerBuilder is doing to ensure compliance, and what you need to do to make sure your organization is up to date.
Why is This Upgrade Happening?
SSL/TLS are cryptographic protocols used to provide authentication, confidentiality and data integrity between communicating devices. An example of these communications is between a client and a webserver via a web browser, where SSL/TLS is what gives the “s” in “https” web requests.
SSL was developed in the early 1990’s and was a precursor to the more secure TLS. However, since that time there have been several vulnerabilities found within both SSL and early versions of TLS such that they no longer are considered effective mitigating security controls. In response, for payment processors and merchants, the PCI Security Standards Council set a requirement to move to TLS 1.2 by June 30, 2018.
In adherence to these compliance changes and to continually provide the best level of protection for our client data, we too will be requiring TLS 1.2.
What Does This Mean to You?
For most users, this change does not have any impact. Those impacted will see the default browser error page asking you to diagnose connection problems.
Who is Potentially Impacted?
- Users still on Internet Explorer 10 or earlier.
- Partners integrating with CareerBuilder using processes/servers that have not been upgraded to TLS 1.2.
How Can I Determine if I Need to Upgrade My Browser?
You can test your browser by visiting: https://www.ssllabs.com/.
If you have any questions or concerns, please contact Client Support.