As a PCI Level 1 Service Provider, LimeLight maintains the highest security standards in order to protect your data. As part of these requirements we must discontinue support for TLS version 1.0 to our application and API before June 30, 2018. However, in order to ensure there are no issues by this PCI mandated date, we will be disabling TLS v1.0 by April 20, 2018 and working with those in need of more time to migrate on a case by case basis.
What is the change?
LimeLight is requiring an upgrade to TLS 1.1 or higher starting on April 20, 2018. On that date we will begin disabling the TLS 1.0 encryption protocol, which will prevent customers still using it from accessing the LimeLight application and API.
How will you be impacted?
After LimeLight disables TLS 1.0, any inbound connections to or outbound connections from your LimeLight platform instance that rely on TLS 1.0 will fail.
How do I verify that I will not be affected after April 20, 2018 when TLS v1.0 is disabled?
LimeLight has created a LIVE endpoint for your platform instance that already has TLS v1.0 disabled. You can temporarily point your web browsers or API endpoints at the following URLs to ensure you can connect successfully:
- For LimeLight platform access visit this URL from the browser of any user that uses the LimeLight application:
If you see a login page, you are successfully connecting with TLS v1.1 or higher and should have no problems after April 20, 2018.
- For LimeLight API access, testing should be done with your actual application (ideally a test/staging version that resides on the same server as your production systems that connect to LimeLight), the API endpoints are:
Although it may be possible to test with a CURL script from the server (e.g. curl 'https://demo.static.
The *.static.limelightcrm.com TLS v1.1+ validation domain points to your PRODUCTION LimeLight application. However, this endpoint should only be used to test your system's compatibility with LimeLight and does not have the capacity for scaled traffic. Please ensure that all endpoints are switched back to the normal *.limelightcrm.com endpoints after your test.
If your application continues to work after temporarily switching out your endpoints to yourownsubdomain.static.
What is TLS?
TLS stands for "Transport Layer Security." It is a protocol that provides privacy and data integrity between two communicating applications. It's the most widely deployed security protocol used today, and is used for web browsers and other applications that require data to be securely exchanged over a network. TLS ensures that a connection to a remote endpoint is the intended endpoint through encryption and endpoint identity verification. The versions of TLS, to date, are TLS 1.0, 1.1 and 1.2.
What are the risks of not upgrading?
Upgrading to TLS 1.1 or higher is a mandatory requirement of PCI. Failure to upgrade connections would potentially risk the integrity and the authenticity of the data being sent between the client and LimeLight. An attacker could perform a man-in-the-middle attack and passively observe the contents of the messages or spoof their own messages.
Where can I get more information about this?
You can get more information by reading this document from the PCI Security Standards Council: https://www.
If you have any questions or concerns, please feel free to reach out to Support via e-mail at firstname.lastname@example.org