June 5, 2019
fTLD Registry Services (fTLD) is committed to periodically reviewing our Security Requirements (the “Requirements”) to ensure they are in-line with best practices for the financial services sector, helping to protect against evolving security threats. fTLD recently reviewed the Requirements and modified TLS/Encryption to reflect TLS v1.2 as follows:
- For Web Connections: TLS v1.2 or greater should be maintained and TLS v1.0 must be disabled.
- For Other Services: TLS v1.2 or greater should be used and TLS v1.0 does not need to be disabled at this time.
Registrants must make any necessary modifications to comply with the new Requirements no later than September 5, 2019.