Removing Support for TLS 1.0 and 1.1 Protocols
On March 31, 2024, Rollbar will remove support for TLS 1.0 and 1.1 protocols. Rollbar is discontinuing the support for these older versions of TLS.
This means any attempted connections using older browsers that only support TLS 1.0 and 1.1 will no longer be allowed. As of March 31, 2024, only TLS 1.2 and higher are supported by Rollbar.
What is changing?
Transport Layer Security (TLS) is the protocol at the heart of HTTPS (the successor to SSL). Its primary purpose is to encrypt the communication, thus preventing eavesdropping and data tampering. In the past, several security vulnerabilities in TLS have been found, the most famous being BEAST and POODLE. The solution has been to update newer versions of TLS protocols that fixed those vulnerabilities and implement other minor security improvements. Currently, TLS 1.2 and TLS 1.3 are supported by all major browsers and modern software due to these improvements.
To maximize compatibility with existing deployments, Rollbar has continued to support all TLS versions starting from 1.0. But now, the time has come to retire TLS 1.0 and 1.1. As of March 31, 2024, the minimum version of TLS supported by Rollbar will be 1.2.
What actions are needed?
If you are using TLS 1.0 or 1.1, you will need to upgrade to 1.2 or higher in order to keep using Rollbar. Not sure if you're affected? Send us a note at [email protected] and we can confirm whether we have received recent data on TLS 1.0 or 1.1 from your account.