Skip to main content
LinkedIn
Copied!

Table of Contents

Data-in-transit encryption in Pega Cloud

Pega Cloud Services maintains policies to implement data-in-transit for all Pega Cloud Services sandbox and production environments.

Using data-in-transit encryption Pega Cloud Services ensures the following network connections meet the highest industry standards and helps your application comply with your enterprise security requirements:

  • Internal connections within the service, such as service-to-service and node-to-node connections.
  • External connections to the service, such as Pega environment-to-client data connections.

Required client reviews following infrastructure updates

As Pega evolves your service, Pega updates this page to show the most recent protocol and cipher support changes and protocols or ciphers that your service no longer supports. After any Pega security-policy or infrastructure-update communications that include security protocol or cipher support changes, the Pega Cloud servers will negotiate from this list of ciphers in order of preference. To support this change, you should review and make certain that any of your clients (such as a Web browser) that interact with Pega services fully support the updated list.

Pega will provide this information as soon as possible so your environment security administrators and network administrators have time to prepare for upcoming changes.

Latest supported protocols and cipher suites for data-in-transit

The following table lists the ciphers that clients can and cannot use for their data-in-transit connections.

Supported TLS encryption settings following your next Pega Cloud Services infrastructure update

Supported TLS encryption protocols and cipher suites effective September 2021
Protocol-TLSv1.2

Ciphers:

ECDHE-RSA-AES128-GCM-SHA256

ECDHE-RSA-AES256-GCM-SHA384

TLS encryption settings no longer supported following your next Pega Cloud Services infrastructure update

Unsupported TLS encryption cipher suites effective September 2021

Ciphers:

ECDHE-ECDSA-AES128-SHA256

ECDHE-RSA-AES128-SHA256

ECDHE-ECDSA-AES128-SHA

ECDHE-RSA-AES128-SHA

ECDHE-ECDSA-AES256-SHA384

ECDHE-RSA-AES256-SHA384

ECDHE-RSA-AES256-SHA

ECDHE-ECDSA-AES256-SHA

Suggest Edit
Did you find this content helpful?

66% found this useful

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.

Ready to crush complexity?

Experience the benefits of Pega Community when you log in.

We'd prefer it if you saw us at our best.

Pega Community has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice
Contact us