Security enhancements
to IISE’s website
By June 30, 2018, all IISE website users must be using a
browser and operating system that supports the TLS v1.2 security protocol in
order to access secure pages on the website. See the table below for operating systems
and browsers that support TLS v1.2:
Operating System
|
Version
|
Browser/Version
|
Windows
|
Windows 7 and above
|
Internet Explorer 11 and above
Google Chrome 43 and above
Mozilla Firefox 38 and above
|
Apple (MAC)
|
MAC OS X 10.9 and above
|
Safari version 7 and above
|
Why is this happening?
Because IISE processes credit card transactions, it must
comply with the Payment Card Industry Data Security Standard (PCI DSS). For
more information about these standards, click here.
A recent standard potentially could impact IISE members’
ability to access any secured page on our website. This includes the ability to log in as a
member, update member information, join, renew or register for training.
For over 20 years, Secure Sockets Layer (SSL) has been one
of the most widely used encryption protocols ever released and remains in
widespread use today. Fifteen years ago,
TLS v1.0 superseded SSL. TLS v1.1 and TLS v1.2 are the latest encryption
protocols. When you see the padlock on a Web page or see https in the URL, your
operating system (e.g., Windows 7) and your browser (e.g., Internet Explorer,
Google Chrome, etc.) use one of these protocols to secure the data on the page.
SSL and early TLS no longer meet minimum security standards
due to security vulnerabilities in the protocol for which there are no fixes.
Therefore, to meet the PCI DSS 3.1 requirements, organizations that process
credit cards must disable these protocols no later than June 30, 2018. IISE
already disabled SSL, and plans to disable TLS v1.0 and TLS v1.1 before June 30, 2018.
If you have any questions about these changes, please email onlinesupport@iienet.org.