TLS Vulnerability Statement

As some may be aware, there are upcoming changes to various industry-specific guidelines on secure electronic communications, requiring transitions from the use of SSL and early TLS versions to the newest TLS v1.2. This change is due to identified vulnerabilities with those encryption methods. INSIGHT Appliances and Symantec DLP have already been configured to accept only TLS communications and block SSL, however there is a known vulnerability for TLSv1.0, Browser Exploit Against SSL/TLS (BEAST) (CVE-2011-3389).

Regarding the INSIGHT DLP Appliances, TLS 1.0 is only used for access via a web browser to the Appliance Web GUI on port 5000. While the INSIGHT Support team works on patching the appliance WebUI to TLS 1.2, a work around exists for INSIGHT Appliance customers. An update to this article will be published when the patch is available. The INSIGHT Support team can disable the Web GUI for customers, you will just need to open a support ticket. To disable the Web GUI, the INSIGHT Support Team will disable the appliance-web service and then reboot the appliances (reboot is recommended but not necessary). This should take less than 10 minutes to complete.

If you have any questions or concerns, please contact support or your sales engineer.

Have more questions? Submit a request


Article is closed for comments.