Encryption security protocol issues when using HTTPS

 After some investigations, we have found the root cause.

It is related to the encryption security protocol used by the server to connect the the EAI integration server.

The INT_P uses TLS, whereas the other servers are using SSLv3. Even though all servers have the same default parameter (both active) the use of one or another differs.

We have done many tests and specifically one that forces the server to use only SSLv3, and we got the flows working in integration. However, this requires a code modification as you can see from the following article:http://social.msdn.microsoft.com/Forums/en-US/asmxandxml/thread/37c376a3-f50c-4b57-a1df-83dc43fcddbf

Here is the code modification.

public class Global : System.Web.HttpApplication
    {

        protected void Application_Start(object sender, EventArgs e)
        {
            //to force the server use SSL3 for secure connections
            ServicePointManager.SecurityProtocol = SecurityProtocolType.Ssl3;
        }


 

We also are near 100% sure that this problem has been triggered by the installation of a patch affecting either the .Net Framework or Windows server. We have listed some KB that need analysis to see if the modification are impacting the encryption security protocol. You can see the list of the KB affecting the .Net Framework.

 

Les KB suivants ont été installés le 11 ou 12 août dernier :

 

Microsoft .NET Framework 3.0 Service Pack 2:

KB976769v2

 

Microsoft .NET Framework 2.0 Service Pack 2:

KB976765

KB980773

 

Security Update for Windows Server 2003:

KB2229593

KB2286198

KB2115168

KB980436

KB982214

KB2079403

 

Je n’ai pas de date concernant les KBs suivants:

 

Microsoft .NET Framework 3.5 SP1 :

KB953595

KB963707

KB958484

 

评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值