NYISO Cipher Protocol Update
Originally scheduled to go into effect on January 31, 2021, as part of the Cipher Mitigation project, the NYISO Cipher/Protocol Update has now been extended to March 1, 2021. To avoid service connectivity problems with NYISO market applications, communication protocols and cipher communications must be updated as NYISO will not be supporting the TLS 1.0 protocol and any ciphers using DES, 3DES, or SHA1 after January 31st. If your organization uses up-to-date Internet browsers to access market applications, there will not likely be an impact by this change. Should your organization use any system-to-system interface or automated process, however, please validate the following connections: • All protocol connections should be using TLS 1.1 or higher. Upgrading to TLS 1.2 is recommended. • All ciphers being used in connections should not include DES, 3DES, or SHA1. E.g. the following ciphers should no longer be used: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA TLS_RSA_WITH_3DES_EDE_CBC_SHA To confirm the appropriate changes have been made to your organization, utilize the Market Trials Environment. These changes should not impact the functionality of your organization’s digital certificates as long as a valid certificate is being used. Should you need additional support, contact the NYISO Stakeholder Services Department at 518-356-6060.