Announcement: 3DES deprecation.

Dear Customers,

As an important security measure, we are deprecating insecure cipher connection mechanisms like 3DES on Feb 10th 2017.

Will change this affect you?

API users :

If you are using API's using insecure 3DES cipher protocols, they will not be supported after the deprecation.

Please update your API's to connect via AES (126,256).

Refer the following to set the cipher suite for the language you are using:

Java - Set the cipher suite in javax.net.ssl.SSLSocket.

Ruby - Set the preferred cipher suite in OpenSSL::SSL::SSLContext

PHP - Set CURLOPT_SSL_CIPHER_LIST to a list cipher suites that uses AES for encryption to your Curl options.

Python - Set the cipher suite in SSLContext.set_ciphers.

c# - Use CipherAlgorithmType AES.

Outlook and Office plugin users :

If you are using Outlook and Office plugins on Windows XP/Windows 2003 server or earlier, they will stop working after 3DES deprecation.

To continue using these plugins kindly upgrade their OS.

CRM users on older versions of browsers on legacy systems:

Users of IE on Windows XP or Windows 2003 server will not be able to access Zoho CRM after 3DES deprecation.

To continue using these plugins kindly upgrade their OS or at least use latest versions on Chrome/Firefox browsers. You can refer to SSLLabs to check whether your browser will be affected by this measure.

Windows XP/Windows 2003 server and other such legacy systems do not support AES based ciphers by default as these systems are no longer supported by its vendor, it is recommend to upgrade these OS.

For more details kindly refer to the forum post here : https://help.zoho.com/portal/en/community/topic/sweet32-birthday-attack-on-64-bit-block-cipher-withdrawal-of-3des-cipher-support-for-all-zoho-services-31-01-2017