PJM Retirement of Obsolete TLS Protocol Configuration
Transport Layer Security (TLS) is a widely-used security protocol that encrypts data sent over the Internet between two endpoints, most commonly when loading websites over HTTPS. Over time, new attacks against TLS and the encryption algorithms it uses have been discovered, creating risks for data integrity and safety. As a result, network connections utilizing obsolete protocols are left in vulnerable positions and are at a higher risk of exploitation by hackers.
As of November 1, PJM retired obsolete TLS protocol configurations in PJM internet-facing websites. PJM no longer supports TLS 1.0 or TLS 1.1 protocols and certain insecure ciphers, such as 3DES cipher and the TLS_RSA_* ciphers in TLS 1.2.
PJM retired obsolete TLS protocol configuration in production on the following internet-facing applications:
PJM prepared the Weak Encryption Remediation Guide which provides guidance which technical contacts can use to update the non-compliant source device (browser or browser-less) deployments, so that obsolete TLS protocol configurations can be updated expeditiously or disabled.
If you have any questions regarding this weak encryption remediation effort or need details on the weak encryption connections observed for your company, please contact Zeenath Fernandes or PJM Member Relations. Adapt2 has proudly prepared its clients for this change. Thank you for your continuous engagement.