Aloita uusi aihe
Visma Sign Community Tärkeät tiedotteet
Upcoming Security Update & Cipher Suite Deprecation

R

At Visma Sign, securing your data and maintaining the highest standard of platform integrity is our top priority. As part of our ongoing commitment to industry-leading security, we are updating our Transport Layer Security (TLS) configuration to deprecate outdated and weak cipher suites.


What is Happening?


Effective 26.02.2026, we will be retiring support for a list of cipher suites that utilize older cryptographic modes (such as AES-CBC) or outdated hashing algorithms. These ciphers are considered legacy and no longer meet modern security standards.

This is a breaking change for any client, API connection, or integration that relies exclusively on these specific deprecated ciphers for connectivity to [Your Company Name]'s services.


Action Required by Your Team


To ensure uninterrupted service and maintain connection stability after the deprecation date, your technical or security team must update any connecting clients (including API calls, system integrations, and client browsers) to utilize modern, forward secrecy-enabled cipher suites.


We strongly recommend enabling support for TLS 1.3 and ensuring your clients can utilize one of the following preferred suites:


Preferred TLS 1.3 Suites (Highest Security Standard):

  • TLS_AES_256_GCM_SHA384

  • TLS_CHACHA20_POLY1305_SHA256

  • TLS_AES_128_GCM_SHA256



If TLS 1.3 is not yet an option, please ensure support for for example these acceptable TLS 1.2 alternatives:

  • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

  • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256

  • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384


Deprecated Cipher Suites

The following ciphers will be completely removed from our supported list on 26.02.2026:

Cipher Suite

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256

TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA

TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384

TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA

TLS_DHE_RSA_WITH_AES_128_CBC_SHA256

TLS_DHE_RSA_WITH_AES_128_CBC_SHA

TLS_DHE_RSA_WITH_AES_256_CBC_SHA256

TLS_DHE_RSA_WITH_AES_256_CBC_SHA


Next Steps and Support


Please review this information and coordinate with your technical team to ensure your systems support modern TLS ciphers before 26.02.2026.

If you have any questions or require assistance with testing your connectivity, contact our support team at partners.sign@visma.com.


Thank you for your partnership as we continue to enhance the security of our platform.

Sincerely,

The Visma Sign team

Vastaa
Kirjaudu tai Rekisteröidy lähettääksesi kommentin

Etkö löydä etsimääsi?

Aloita uusi keskustelu