Thank you for your feedback.

Was this useful?

OpenPayslips & OpenEnrol Security Update – Removal of TLS 1 & 1.1

Article ID
12232
Article Name
OpenPayslips & OpenEnrol Security Update – Removal of TLS 1 & 1.1
Created Date
12th August 2020
Product
IRIS PAYE-Master, Earnie, IRIS Payroll Basics, IRIS Payroll Business, IRIS Earnie IQ, IRIS GP Payroll, IRIS Bureau Payroll
Problem

Keeping your data safe is of paramount importance to IRIS. We are always looking for ways to make our technology more secure, whilst delivering reliable and compliant solutions.

In the interest of maintaining a high level of data security, IRIS has recently announced a new security standard for all our products. The security standard is aimed at ensuring we deliver safe & trustworthy products and services.

A requirement of the policy is that we disable the use of Transport Layer Security (TLS) 1.0 and 1.1 in-line with industry standards. This technology is currently available for publishing and viewing documents in OpenEnrol & OpenPayslips.

Resolution

What does this mean to you, as an OpenPayslips/OpenEnrol user?

  • Windows 8 or above can continue to be used as normal
  • Windows XP can continue to be used; however action may need to be taken
  • Windows 7 can continue to be used; however action may need to be taken
  • Windows Vista and Windows server 2003 will no longer be compatible for publishing or viewing payslips

What do I need to do if I operate on Windows 7 or XP?

If you are using Windows 7 or XP then you must ensure that you have downloaded the latest update which allows TLS 1.1 & 1.2. You must then enable TLS 1.2.

Details of how to do this for Windows 7 can be found here.

Details of how to do this for Windows XP can be found here.

Will myePayWindow be any different?

MyePayWindow already has TLS 1 &1.1 disabled, therefore this will be the same for customers migrating over.

Why have we chosen to do this?

TLS 1 & 1.1 no longer meet modern day security standards, leaving users exposed to vulnerabilities.

Further to this, Microsoft no longer supports XP, Vista or Windows 7. Therefore security updates are no longer built with these operating systems in mind. This change is not specific to IRIS, with cloud software of all varieties taking these steps.

As communicated previously, IRIS no longer support these operating systems and therefore do not test system updates for compatibility with them. It is strongly advised that customers find an alternative solution to avoid risk of loss of service.

When will this happen?

TLS 1 & 1.1 will be removed from OpenPayslips and OpenEnrol no later than 31st October, therefore you must act now if you are affected.

What can I do if I currently operate Windows Vista?

For customers who currently use Windows Vista Operating software, we strongly advise that you upgrade to a more recent version. This will ensure that you can comply with the security standards of modern-day software.

There are 2 options available to you:

  • Upgrade your operating software to a more recent version of Windows
  • Sign up to a hosted desktop service, operating a more up to-date operating system

Please get in touch with our support team for guidance relating to any of the above updates. Click here for support contact details

We hope that this does not cause you any inconvenience and as always, welcome any feedback, please email hcmproduct@iris.co.uk

Thank you for your feedback.

Was this useful?