Impact of OpenSSL 3.0 on TIBCO BusinessWorks

Impact of OpenSSL 3.0 on TIBCO BusinessWorks

book

Article ID: KB0071376

calendar_today

Updated On:

Products Versions
TIBCO ActiveMatrix BusinessWorks 5.x, 6.x

Description

TIBCO Enterprise Message Service, TIBCO FTL/eFTL, and TIBCO Rendezvous will require strengthening ciphers and certificates, and removing older, exploitable protocols, as a result of supporting OpenSSL 3.0.

Resolution

The following TIBCO BusinessWorks versions have been tested with Rendezvous 8.6.0 / Enterprise Message Service 10.2 and have the required minimum version of JRE which support OpenSSL 3.0 :

  • BusinessWorks 5.15.0 (TRA 5.12.2 / 5.12.1) 
  • BusinessWorks 5.14.1 (TRA 5.11.3)
  • BusinessWorks 6.9.0, 6.8.1 hotfix-03 and 6.8.0 hotfix-03 

Customers on BW 6.7.0 should apply hotfix-08 and have Java 1.8.0_351 (or above). If you need to apply the latest JRE patch then contact TIBCO Support.

Issue/Introduction

Impact of OpenSSL 3.0 on TIBCO BusinessWorks

Additional Information

For more details on the complete impact of OpenSSL 3.0 on TIBCO Enterprise Message Service, TIBCO FTL/eFTL, and TIBCO Rendezvous refer the below article:
https://support.tibco.com/s/article/LBN-for-Advisory-on-legacy-Certificates-Used-with-TIBCO-Messaging