As a user of Morgan White Group websites and services, we want to inform you of a change regarding supported encryption protocols. Beginning on June 16, 2018 and to adhere with PCI, HIPAA and HITRUST regulations, MWG domains or URLs will begin disabling the TLS 1.0 encryption protocol. This action will prevent TLS 1.0 from being used to access MWG websites and web services. The Internet browsers that fully support TLS 1.1 or higher are Internet Explorer 11, Chrome 30 or Edge 10. If you do not have these newer Internet browser versions then you will likely encounter problems accessing MWG domains. Please ensure that you or those needing access to these domains have the updated version of the browser that supports TLS 1.1 or higher.
Sensitive data – from credit card numbers to patient health information – need protection when transmitted across an insecure network, so administrators employ protocols that reduce the risk of that data being intercepted and used maliciously. TLS, a standard specified by the Internet Engineering Task Force, defines the method by which client and server computers establish a secure connection with one another to protect data that is passed back and forth. TLS is used by a wide variety of everyday applications, including email, secure web browsing, web payment applications, instant messaging, voice-over-IP (VOIP), and for MWG web services. The Internet Engineering Task Force found vulnerabilities in TLS 1.0, one of the most widely used protocols, and updated it to TLS 1.1 and then TLS 1.2 to resolve many of these security issues. In order to mitigate these vulnerabilities and adhere to PCI, HIPAA and HITRUST regulations, MWG will disable the use of TLS 1.0 for connections to our websites.
If you want to continue to accessing MWG web services, you need to ensure your browser(s) have TLS 1.1 and/or TLS 1.2 enabled. If your browser or integration does not have TLS 1.1 or higher enabled after we make this change, then you will NOT be able to access certain MWG website(s) or web service(s) after June 15, 2018.
You can check to see if your current browser will be supported by TLS 1.1 or higher by accessing this online tool from SSL Labs, https://www.ssllabs.com/ssltest/viewMyClient.html. By connecting to this link, SSL Labs will check your browser’s supported protocols. After opening the link in your browser, scroll down to the “Protocol Features” section. If your browser supports TLS 1.1 or TLS 1.2, you are good to go. If not, please see below, upgrade your browser and/or contact your Company’s IT department for assistance.
Note: Always follow your Company’s IT guidelines for application installations.
You can also visit the following link to determine which browser versions support TLS 1.1 and TLS 1.2:
https://caniuse.com/#feat=tls1-1
View this page to Enable TLS 1.1 and 1.2 on various browsers:
https://knowledge.geotrust.com/support/knowledge-base/index?page=content&id=INFO3299