TLS Support

If you have developed an application that uses the Bronto API on a server, that server uses TLS when connecting to the Bronto application.

Transport Layer Security (TLS) is a security protocol that was first established in 1999 as a more secure replacement for SSL. TLS is used to set up encryption between networked devices. During a TLS connection, the client (your application) and server (Bronto) exchange messages using the same set of algorithms (ciphers).

Earlier versions of TLS can be leave your server vulnerable to attack and are no longer recommended by groups like the PCI Security Standards Council due to security concerns.

Bronto requires using TLS versions of 1.2 or higher with the following cipher suites:

  • ECDHE-RSA-AES256-GCM-SHA384
  • ECDHE-RSA-AES128-GCM-SHA256
  • ECDHE-RSA-AES256-SHA384
  • ECDHE-RSA-AES256-CBC-SHA
  • ECDHE-RSA-AES128-SHA256
  • ECDHE-RSA-AES128-CBC-SHA
  • AES256-GCM-SHA384
  • AES128-GCM-SHA256
  • AES256-SHA256
  • AES256-SHA
  • AES128-SHA256
  • AES128-SHA