Ensuring Ongoing Privacy and Data Security


    January 28, 2020

    Customers Affected:
    All programs that communicate and sync data securely with trams.com and sync.trams.com

    Purpose:
    PCI Update

    CBO Maintenance Announcement


    Trouble seeing this email, view here
    RedSabreLogo.jpg
    CBO Maintenance Header

    Dear ClientBase Customer,

    Data security continues to be a top priority at Trams and ClientBase Products & Services. As part of our effort, January 28 from 12:00am Pacific time to 4:00am Pacific time we are removing the weak cypher (RSA) that is considered non-secure. As previously communicated, all ClientBase and Trams customers must be using an Operating System (OS) that supports TLS 1.2, or you may not be able to access www.clientbaseonline.com, www.clientbasemarketing.com and sync.trams.com. Sabre is committed to protecting your privacy and data.

    Support has found that if you have the right hardware and operating systems for TLS 1.2 described in the FAQ below, creating and using a functional user with a non-expiring password with your scheduled task has worked to get your sync running again. We have outlined the steps. If you require any help from the support desk please contact us to walk you through the process.

    Q: Why is the TLS 1.2 upgrade necessary?

    A: ClientBase Online, CBMS, and our Database Synchronization tool all use SSL/TLS (Transport Layer Security) as the method to secure communications between our servers and web browsers or local applications accessing them. The TLS 1.2 upgrade is necessary as the older SSL and early TLS encryption protocols no longer meet minimum security standards due to vulnerabilities in the protocol for which there are no fixes.

    Q: Which products are affected by this upgrade?

    A: All programs that communicate and sync data securely with trams.com and sync.trams.com

    • ClientBase Marketing Services
    • Database Synchronization tool (CBMS Sync, CBO Sync or Branch Sync)
    • ClientBase Online users

    Q: Which Windows operating systems are unable to support TLS 1.2? When did Microsoft end support for these operating systems?

    A:

    Windows OS Version Supports TLS 1.2 Mainstream Support End Date Extended Support End Date
    Windows XP No April, 2010 April, 2014
    Windows Vista No April, 2012 April, 2017
    Windows 7 Yes January, 2015 January, 2020
    Windows Server 2003 No July, 2010 July, 2015
    Windows Server 2008 No January, 2015 January, 2020
    Windows Server 2008 R2 Yes January, 2015 January, 2020

    Q: What does it mean that Microsoft ended support for my operating system?

    A: End of support refers to the date when Microsoft no longer provides automatic fixes, updates, or online technical assistance. Without Microsoft support, you will no longer receive security updates that can help protect your PC from harmful viruses, spyware, and other malicious software that can steal your personal information.

    Q: Do I have to replace my server if I'm not on a supported Windows operating system?

    A: While we of course highly recommend upgrading to a server that Microsoft supports to ensure the highest level of security for your data, you can move any of your scheduled sync tasks to a desktop computer with an operating system that supports TLS 1.2 and continue using your current server until an upgrade can be made.

    Q: What are the ClientBase/TRAMS hardware requirements?

    A: Please click the link below for our current hardware requirements:
    http://static.trams.com/tramslibrary/documentation/cb/hwsysrequire.pdf

    Q: If I have a supported operating system that is not enabled by default, how do I enable it to use TLS 1.2?

    A: Since TLS 1.2 is not automatically enabled on Windows 7 or Windows Server 2008 R2, here are the quick steps to enable it from a user work station or the computer running your Sync scheduled task.

    • Open your Internet Explorer browser
    • Select Internet Options
    • Click on the Advanced Tab
    • Check "Use TLS 1.2" from the security grouping.

    To verify TLS 1.2 has been enabled from the computer running Sync click on this link:
    https://www.ssllabs.com/ssltest/viewMyClient.html

    You should see YES next to TLS 1.2 under "Protocol Features"

    Q: What if I have additional questions or need assistance?

    A: Sabre takes the business of securing your data quite seriously and we are happy to help if you have any questions or need further assistance. Please contact us at trams.Techdesk@sabre.com with questions relating to this upgrade.

    We remain committed to world-class security practices, and our support and sales teams are ready to assist our customers to prepare for compliance with minimal disruption.

    Kind regards,
    Your Trams and ClientBase Products and Services Team




    If you are not the correct recipient to receive these types of product communications, please click Reply to Trams.CustomerCare@sabre.com and provide the correct contact name and e-mail address you wish future
    product communications to be sent.

    Trams and ClientBase Products and Services| Sabre
    5777 West Century Blvd., Ste 1200 | Los Angeles, California 90045
    310-641-8726 | www.sabretravelnetwork.com/trams



    Contact for more information: trams.Techdesk@sabre.com