Summary of Event
As part of Medidata's commitment to our customers, we will be improving the security of Medidata's Web Services on Saturday, December 2, 2017.
How is the security being increased?
Medidata will be disabling older, vulnerable encryption algorithms as well as updating load balancers for Rave and Rave Web Services. As a result, any custom client applications integrated with Medidata platform web services must use newer encryption algorithms to access Medidata applications.
How do I know if this affects me?
If you are using operating systems or configurations considered obsolete, your access to our platform will be impacted as of December 2, 2017.
How do I update the algorithms? Who should I contact?
The systems which connect to the Medidata platform are enormously varied from customer to customer, so we ask that you contact your Systems Administrator and alert them to our upgrade.
If you use a third party, it's critical to let them know as their environment probably supports multiple customers and may add some complexity to the changes.
Additionally, make sure your platform supports TLS 1.2. Also, you may need to adjust the configuration of any network equipment, such as load balancers, in the environment which brokers transmissions to Medidata.
UPDATE - 11/21/2017: We have added a link that will allow your Systems Administrator to run tests: https://secops-rave-test.
- Attacks on 64-Bit Block Ciphers in TLS and Open VPN
- Protocol Testing Tool: Proposed & Current Cipher Suite Orders
- Microsoft’s Upgrade: