Acoustic provides encryption services on many API endpoints. Generally, this has no impact on the customer's use of Acoustic services. However, Acoustic is upgrading and updating network infrastructure to improve availability and as part of these upgrades, cipher suites used to communicate with our services are also being updated. This change will potentially impact anyone using our APIs, including customers using Unica.
Specifically, today we support the following ciphers:
TLS_AES_128_GCM_SHA256
TLS_AES_256_GCM_SHA384
TLS_CHACHA20_POLY1305_SHA256
ECDHE-ECDSA-AES128-GCM-SHA256
ECDHE-RSA-AES128-GCM-SHA256
ECDHE-ECDSA-AES128-SHA256
ECDHE-RSA-AES128-SHA256
ECDHE-ECDSA-AES256-GCM-SHA384
ECDHE-RSA-AES256-GCM-SHA384
ECDHE-ECDSA-AES256-SHA384
ECDHE-RSA-AES256-SHA384
Following the upgrade, we will support only these ciphers:
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
Applications with up-to-date networking and security support will typically support these ciphers. If you find that your software does not support these new ciphers, you will generally need to update your software or the networking library you are using to the latest release to gain access to additional / newer ciphers. This is something typically handled by your application support person / engineer. Unfortunately, Acoustic can't assist with updating your ciphers.
Who does this change potentially impact?
API users
Customers that use our APIs may be affected if their current software implementation does not provide support for these new ciphers.
Unica Campaign users
Unica Campaign uses Acoustic APIs, so Unica users are potentially impacted. You will want to ensure that your Unica implementation supports at least one of the supported ciphers above. This may involve updating the “Jython” library to the most recent version. Contact Acoustic support if you have any questions.
What do I do now?
You will need to engage the team responsible for maintaining your tool that uses our APIs and provide them with the list of supported ciphers. That team will need to update your application, if necessary, to support one or more of the ciphers listed above.
If you have any questions, contact support.