Lucity iOS clients will require Forward Secrecy with SSL beginning Dec 5, 2016

As previously announced, the Lucity Mobile 2.0 application for iOS will require SSL with TLS 1.2 starting next week.  In addition, SSL must be configured to support (perfect) forward secrecy using the Elliptic Curve Diffie-Hellman (ECDHE) key exchange.  This requires cipher suites installed on Windows Server to support this key exchange.  The order of the cipher suites will also affect whether perfect forward secrecy is supported.

These requirements are due to new Apple Security Requirements which require all submitted apps to adhere to Application Transport Security (ATS) before the end of 2016.

If you have any questions or need help figuring out whether your servers will support the new requirements, please contact Lucity Support.

 

Lucity iOS Clients will require SSL (TLS 1.2) beginning Dec 5, 2016

Users of Lucity Mobile for iPad or iPhone with Lucity 2016 or Lucity 2016r2 will receive an update next week which requires TLS 1.2.  These new requirements are necessary to meet new Apple requirements.  There is no backdoor or work around.  Lucity Mobile Server must be deployed with SSL and must support the TLS 1.2 protocol. We announced this in a previous blog post but want to put out another warning to make sure everyone is ready!

Microsoft Windows Server 2008r2 does not enable TLS 1.2 by default.  If you have Lucity Mobile Server deployed on a Windows Server 2008r2, you must take manual steps to enable TLS 1.2 on these servers.  This article contains some details about the steps to enable TLS 1.2 on Windows Server 2008r2.

Please see the post discussing the forward secrecy requirement as well.  This is also a critical requirement for iOS clients.

If you have questions or concerns, please contact Lucity support.