Contents x
      Security Update on Delhivery One - Migration to TLS 1.3
      • 13 Nov 2024
      • Print
      • Dark
        Light
      • PDF
      Contents

      Security Update on Delhivery One - Migration to TLS 1.3

      • Updated on 13 Nov 2024
      • Print
      • Dark
        Light
      • PDF
      Article summary

      Overview

      Starting 18-11-2024, our application will only support TLS 1.3 to enhance security. Older versions of TLS (1.0 and 1.1) will no longer be supported. If you experience any issues accessing our website, please follow the steps below to ensure your systems and browsers are compatible with TLS 1.3.

      What is TLS?

      TLS (Transport Layer Security) is a protocol that ensures the security and privacy of data transmitted over the Internet. TLS 1.3 provides improved performance and stronger encryption compared to previous versions (TLS 1.0 and 1.1).

      Why We Are Migrating to TLS 1.3

      • Enhanced Security: TLS 1.3 uses more modern cryptographic algorithms.
      • Better Performance: TLS 1.3 improves speed by reducing the number of handshake steps.
      • Compliance: TLS 1.0 and 1.1 are outdated and have known vulnerabilities.

      Step-by-Step Guide to Ensure Compatibility with TLS 1.3

      1. Ensure Your Browser Supports TLS 1.3

      Most modern browsers support TLS 1.3 by default. Ensure your browser is up to date. Check below for browser-specific steps.

      • Google Chrome (Version 70+)
        • Go to Chrome’s menu (three dots in the top right corner) > Help > About Google Chrome.
        • Chrome will automatically check for updates. Ensure that it updates to the latest version.
        • Restart your browser.
      • Mozilla Firefox (Version 63+)
        • Click the menu button (three lines in the top right corner) > Help > About Firefox.
        • Firefox will check for updates and install the latest version.
        • Restart Firefox
      • Microsoft Edge (Version 75+)
        • Click the three-dot menu > Help and Feedback > About Microsoft Edge.
        • Edge will update automatically to the latest version if needed.
        • Restart the browser.
      • Apple Safari (Version 12.1+)
        • Safari updates through macOS updates.
        • Go to System Preferences > Software Update.
        • Install any available updates, and restart your device.

      2. Ensure Operating System Support

      Operating system updates are essential for TLS 1.3 compatibility.

      • Windows 10 and 11: Both support TLS 1.3 natively, but ensure the latest updates are installed.
        • Go to Settings > Update & Security > Check for updates.
      • macOS 10.14 (Mojave) or later: Ensure your macOS is updated to at least Mojave or newer versions.
        • Go to System Preferences > Software Update.
      • Linux: Update OpenSSL to version 1.1.1 or higher.
        • Run the following command in your terminal: bash

      3.  Check Your Network or Proxy Settings

      Some older firewalls or proxy devices may not support TLS 1.3. Ensure that your network equipment (such as firewalls or proxies) is updated to handle the new encryption protocols.

      • Check with Your Network Administrator: Ask your network administrator to verify that the network equipment supports TLS 1.3 or configure it to allow TLS 1.3 traffic.

      4. Clear Browser Cache

      Cached content using older versions of TLS might cause issues during the transition.

      • Clear Cache in Chrome: Go to Settings > Privacy and SecurityClear browsing data. Select Cached images and files and click Clear data.
      • Clear Cache in Firefox: Click the menu button > Options > Privacy & Security. Scroll to Cookies and Site Data, then click Clear Data.

      5. Disable/Remove Old TLS Versions in Browser (If Necessary)

      For some browsers, TLS 1.0/1.1 might still be enabled by default. Disabling them will force the browser to use TLS 1.2 or 1.3.

      • Chrome:
      1. In the address bar, type chrome://flags/ and press Enter.
      2. Search for "TLS".
      3. Disable "TLS 1.0/1.1".
      • Firefox:
      1. Type about: config in the address bar and press Enter.
      2. Search for security.tls.version.min.
      3. Set the value to 3 (TLS 1.2) or 4 (TLS 1.3).

      6. Test TL 1.3 Connection

      After following the steps above, you can verify that your browser supports TLS 1.3 by visiting this link: https://tls13.akamai.io

      WooCommerce Channel Migration

      WooCommerce operates as a plugin for WordPress, and TLS compatibility depends on your hosting provider and the plugins you use. To ensure a smooth transition to TLS 1.3, follow these steps:

      Steps to Ensure WooCommerce Compatibility with TLS 1.3

      1. Ensure Your Hosting Provider Supports TLS 1.3
        1. Contact your hosting provider to ensure they support TLS 1.3. Most modern hosting providers have already upgraded to support TLS 1.3.
        2. If your hosting provider is outdated, you may need to upgrade your hosting plan or switch to a more modern provider.
      2. Update WordPress and WooCommerce Plugins
        1. Make sure your WordPress core and WooCommerce plugin are updated to their latest versions.
        2. Go to Dashboard > Updates and install any available updates for WordPress and your installed plugins.
      3. Check Payment Gateway Plugins
        1. Ensure the payment gateway plugins you use are compatible with TLS 1.3.
        2. For example, if you're using PayPal, Stripe, or other popular gateways, ensure their plugins are updated to the latest version.
      4. Update Custom Integrations
        1. If you’ve integrated custom API endpoints or third-party services in WooCommerce, verify that they support TLS 1.3.
        2. You may need to contact the developers of custom plugins to ensure they have upgraded to support the latest TLS version.
      5. Test Your WooCommerce Store
        1. After updating, check if your WooCommerce store works properly with TLS 1.3 by accessing it in a modern browser.
        2. Run a test transaction to ensure that payment gateways and other external services work without issues.

      Please refer to this link for more information

      Frequently Asked Questions

      Q1: Will my older device or browser still work after the TLS 1.3 migration?

      • Most modern devices and browsers are compatible with TLS 1.3. However, older browsers or operating systems may not support it, so you may need to upgrade.

      Q2: What should I do if I cannot access the site after the migration?

      • First, ensure your browser and operating system are updated to the latest versions.
      • Clear your browser cache and restart the browser.
      • Contact your network administrator if you’re behind a proxy or firewall that may need updates.

      Q3: Are there specific browsers that do not support TLS 1.3?

      • Very old browsers such as Internet Explorer do not support TLS 1.3. We recommend upgrading to modern browsers like Chrome, Firefox, or Edge.
      Was this article helpful?