{"@context":"https:\/\/schema.org\/","@type":"BlogPosting","@id":"https:\/\/stg.cultbooking.com\/en\/cultbooking-switched-to-tls-1-2-secure-protocol\/#BlogPosting","mainEntityOfPage":"https:\/\/stg.cultbooking.com\/en\/cultbooking-switched-to-tls-1-2-secure-protocol\/","headline":"CultBooking switched to TLS 1.2: Secure protocol","name":"CultBooking switched to TLS 1.2: Secure protocol","description":"CultSwitch, leading channel manager in the DACH market, has proposed CultBooking to move from TLS 1.1 to TLS 1.2. Therefore the switch and secure changed has been performed in Jun 2019 to keep up to date with the latest security protocols. What Is TLS? As keycdn mentiones: ‘ TLS stands for Transport Layer Security which […]","datePublished":"2019-06-21","dateModified":"2019-10-16","author":{"@type":"Person","@id":"https:\/\/stg.cultbooking.com\/en\/author\/neo\/#Person","name":"Neo","url":"https:\/\/stg.cultbooking.com\/en\/author\/neo\/","identifier":1,"image":{"@type":"ImageObject","@id":"https:\/\/secure.gravatar.com\/avatar\/8f355d6483a2a34199328eff7c903db2f8e9c01d3373e990ad6faf9732220857?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/8f355d6483a2a34199328eff7c903db2f8e9c01d3373e990ad6faf9732220857?s=96&d=mm&r=g","height":96,"width":96}},"publisher":{"@type":"Organization","name":"CultBooking","logo":{"@type":"ImageObject","@id":"https:\/\/stg.cultbooking.com\/wp-content\/uploads\/2019\/08\/Social-Media_Logo_CultBooking.jpg","url":"https:\/\/stg.cultbooking.com\/wp-content\/uploads\/2019\/08\/Social-Media_Logo_CultBooking.jpg","width":2000,"height":2000}},"image":{"@type":"ImageObject","@id":"https:\/\/stg.cultbooking.com\/wp-content\/uploads\/2019\/06\/tls1.2_CultBooking_Booking_Engine_secure_protocol.png","url":"https:\/\/stg.cultbooking.com\/wp-content\/uploads\/2019\/06\/tls1.2_CultBooking_Booking_Engine_secure_protocol.png","height":727,"width":1290},"url":"https:\/\/stg.cultbooking.com\/en\/cultbooking-switched-to-tls-1-2-secure-protocol\/","about":["Uncategorized"],"wordCount":476,"articleBody":"CultSwitch, leading channel manager in the DACH market, has proposed CultBooking to move from TLS 1.1 to TLS 1.2. Therefore the switch and secure changed has been performed in Jun 2019 to keep up to date with the latest security protocols. What Is TLS?As keycdn mentiones:‘ TLS stands for Transport Layer Security which is a cryptographic protocol used to\u00a0increase securityover computer networks. TLS is the successor of SSL although is sometimes still referred to as SSL. TLS has been evolving as time passes to keep up with more complex security requirements, to fix cryptographic flaws, etc. The section below shows a quick timeline of the variations of TLS versions.TLS 1.0\u00a0– Released in 1999 and published as\u00a0RFC 2246. This version of TLS was very similar to SSL 3.0TLS 1.1\u00a0– Released in 2006 and published as\u00a0RFC 4346.TLS 1.2\u00a0– Released in 2008 and published as\u00a0RFC 5246. To explain the differences between TLS 1.2 and TLS 1.1, we\u2019ll outline what changes took place in relation to the previous version of TLS.’TLS 1.1 As previously mentioned, TLS 1.1 was released in 2006 and is the second version of TLS. According to RFC 4346, the major differences that exist in\u00a0TLS 1.1 compared to TLS 1.0\u00a0include the following:The implicit Initialization Vector (IV) is\u00a0replaced with an explicit Initialization Vector\u00a0for protection against Cipher Block Chaining (CBC) attacks.Padding error handling is\u00a0modified to use bad_record_mac alert\u00a0rather than decryption_failed alert. Again, to protect against CBC attacks.IANA registries are\u00a0defined for protocol parameters.A premature close\u00a0no longer causes a session to be non-resumable.Additional notes were added regarding new attacks and a number of clarifications and editorial improvements were made.TLS 1.2 TLS 1.2 is currently the most used version of TLS and has made several improvements in security compared to TLS 1.1. According to RFC 4346, the major differences that exist in\u00a0TLS 1.2 when compared to TLS 1.1\u00a0include the following:The MD5\/SHA-1 combination in the pseudorandom function (PRF) is\u00a0replaced with SHA-256with the option to use the cipher-suite-specified PRFs.The MD5\/SHA-1 combination in the digitally-signed element is replaced with\u00a0a single hash\u00a0which is negotiated during the handshake.Improvements to the client\u2019s and server\u2019s ability to\u00a0specify the accepted hash and signature algorithms.Support for\u00a0authenticated encryption\u00a0for other data modesTLS extensions and AES cipher suites\u00a0were addedTightened up various requirementsWhat are the benefits?The greater enhancement in encryption of TLS 1.2 allows it to use more secure hash algorithms such as\u00a0SHA-256\u00a0as well as advanced cipher suites that support\u00a0elliptical curve cryptography. To check if a particular https:\/\/ web page is using TLS 1.2 encryption, you can run it through an\u00a0ssllabs test. The results will provide you with information regarding what the site is using for security protocols, the cipher suites, etc.For questions and help, you can reach us via the contact form or directly by email: info@cultbooking.com\u00a0"}