OP renewed its certificates
OP will renewed the bank test certificates used by the Web Services channel in spring 2022 and bank production certificates on 25 August 2022.
The certificates of certification sub-authorities serving the WS channel (OP-Pohjola WS CA & OP-Pohjola Services CA) will expire on 12 September 2024. In practice, the certification authority certificates had to be renewed no later than on 25 August 2022 in order for the certification authorities to be able to issue two-year customer certificates. The root certificate authority did not change in this renewal.
Company’s online banking security
OP’s Web Services has stopped supporting old versions of the TLS cryptographic protocol in May 2021. You have not been able to transmit your company’s data to banks using the old TLS versions 1.0 and 1.1 after 20 May 2021.
Limiting support to the latest versions is designed to increase the level of data security. The Finnish Transport and Communications Agency’s regulation on electronic identification and trust services recommends primarily using TLS version 1.2 or later to encrypt and decrypt data transmissions.
What is Transport Layer Security (TLS)?
TLS is a data security protocol that ensures the protection and integrity of data between two communicating applications. It is widely used in web browsers and other applications requiring secure transfer of data over a computer network.
Supported cipher suites
Several old cipher suites is not supported.
OP supports the following cipher suites:
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
What is a cipher suite?
TLS uses so-called cipher suites to encrypt and decrypt transmitted data. A cipher suite is a set of algorithms that help to secure network connections that rely on TLS.