From Release 10.1, AE Services supports the Transport Layer Security (TLS) version 1.3. From AE Services Release 10.1 and later, both TLS 1.2 and TLS 1.3 protocols are enabled by default. The lower level TLS protocols 1.0 and 1.1 are disabled by default and not recommended for use.
Note:
TLS version 1.0 and 1.1 are deprecated according to the National Institute of Standards and Technology (NIST) Special Publication 800-52. So, it is recommended to use TLS version 1.2 and/or 1.3 for added security.
This change may cause the older AE Services 8.x clients who are using TLS 1.0 or 1.1 to fail to establish a secure socket connection to the AE Services 10.2 server. To achieve a more secure client or server socket connection, we encourage current client applications to use AE Services 10.2 Client and SDK, where the TLS 1.2 and 1.3 protocols are supported. If upgrading to AE Services 10.2 SDK is not a viable option, an AE Services administrator can enable the TLS 1.1 and/or 1.0 protocol versions using the AE Services management console web interface.
All four TLS protocol versions can be active at the same time. This allows a gradual migration of current client applications to move towards a more secure TLS protocol over a period of time.
