TLS Protocol Update: Disabling 1.0/1.1, Enabling 1.3 for Ex Libris Hosted Applications
- Product: Aleph
- Product Version: All versions
- Relevant for Installation Type: Hosted by Ex Libris - Dedicated-Direct, TotalCare
Ex Libris TLS Protocol Update: Enhancing Security Standards
Overview
Ex Libris is committed to maintaining high-security standards across all our web-facing platforms. To ensure compliance with industry best practices and enhance the security and reliability of our services, we will disable access using outdated Transport Layer Security (TLS) protocol versions 1.0 and 1.1 across our HTTP platforms. Concurrently, we will also enable the newer, more secure TLS 1.3 protocol.
These steps align with global industry standards and recommendations by security professionals worldwide, including guidance from the IETF and leading security frameworks.
TLS 1.2 and 1.3 offer significant improvements in security, speed, and compatibility, protecting sensitive data against vulnerabilities present in older versions.
Scope of Impact
The following HOSTED Ex Libris applications will be impacted by this update:
- Aleph
Note: We temporarily exclude China from this rollout due to specific technical challenges. We will communicate separately when this region undergoes these changes.
Timeline and Regional Rollout
To minimise disruption and ensure careful monitoring, we are rolling out this change gradually.
This will occur over the month of September 2025 for Europe, through October 2025 for North America and APAC.
Recommended Actions for Customers
- Review Your Systems: Ensure your local browsers, or any APIs, scripts, and integrations that interact with the HTTPS level support TLS 1.2 or higher.
- Monitor Access: During your regional rollout period, monitor your access and report any unexpected connectivity issues promptly.
Reporting Issues
If you encounter any issues related to these changes, please contact Ex Libris Support immediately via our Support Portal. Provide detailed information, including:
- Application affected
- Error message received
- Timestamp of the issue
- Browser or system details used
Frequently Asked Questions (FAQ)
Why are TLS 1.0 and 1.1 being disabled?
TLS 1.0 and 1.1 are outdated protocols with known vulnerabilities. Security standards recommend their deprecation in favor of more secure protocols (TLS 1.2 and TLS 1.3).
What are the benefits of TLS 1.3?
TLS 1.3 enhances security, reduces latency, and offers improved performance. It mitigates vulnerabilities inherent in earlier protocol versions.
How do I check if my system is affected?
Test your system by verifying browser compatibility with TLS 1.2 and above. Most modern browsers have already supported TLS 1.2 and 1.3 for many years.
You can test your browser at this link.
Will service be interrupted during the rollout?
We expect minimal to no impact as we adopt a gradual, carefully monitored approach.
Why was China initially excluded from this rollout?
Due to specific technical constraints in China, we are delaying the implementation there temporarily to ensure a smooth and effective transition. We will communicate further details separately.
We appreciate your cooperation and understanding as we continue to enhance security across our services.
We are committed to clear communication and transparency.
Please reach out to your customer support representative with any concerns or questions.
- Article last edited: 28-May-2025