Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. 1 Cryptographic.

Published byMelinda Whitehead Modified over 8 years ago

Similar presentations

Presentation on theme: "© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. 1 Cryptographic."— Presentation transcript:

1 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. 1 Cryptographic Key Security Update January 2014

2 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2 Security Update Overview Compatibility Period Recording URL and Unlisted Program URL Reports Expired Links and Notifications Support Resources and FAQ

3 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3 Cisco is making changes to improve the management of cryptographic keys used to generate URLs used in WebEx Meeting Center, Training Center, Support Center and Event Center services. This enhancement will modify the way encryption keys are used to generate URLs that link to WebEx recordings and that are used to reset passwords. This update will impact the functionality of existing URLs. The new security settings go into effect for every affected customer on January 29, 2014 Note: This security update will be applied to Sales Center in February (date TBD)

4 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4 This security update will change the format of some URL’s Link Type Meeting Center Event Center Training Center Support Center WebEx Recording Links Password Reset Links Calendar (.ics) Links Unlisted Program Links WebACD Support URL’s

5 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5 What is it? The compatibility period is a 30 day period of time between the deployment date and activation date of this security update. During this 30 day timeframe, customers will not experience any direct impact of the new security settings because the original settings are also in effect. What are the effective dates? 29 January - 27 February. Compatibility period ends as of 28 February. The effective dates and duration of the compatibility period is the same for all customers. What is the purpose? To allow time for customers to update WebEx recording and other URLs that may be shared or embedded in other locations. Updating URLs prior to expiration will ensure a smooth transition and minimize disruption. What happens if URLs are not updated by 28 February? URLs in the old format will be expired on 28 February. Visitors will be taken to a Webex.com page to facilitate requesting an updated recording link.

6 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6 © 2010 Cisco and/or its affiliates. All rights reserved. 6

7 Cisco Confidential 7 Accessible only to Hosts Login to your WebEx site > My WebEx > My Reports > View Old and Updated Links NOTE: If you do not see these reports under My WebEx > My Reports, please go to My WebEx Support > View Old and Updated Links Click appropriate link and report will automatically download.csv format All recordings ever created by the Host

8 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8 Hosts can download list of new links My WebEx > My Reports

9 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9 © 2010 Cisco and/or its affiliates. All rights reserved. 9

10 Cisco Confidential 10 URLs in Reset Password emails sent before January 29, 2014 will be invalidated. A Host who attempts to access an expired Reset Password URL will be redirected to a page to reinitiate password reset. Host authenticates with their email address (associated to their Host ID) A new reset PW link is sent to that email All reset PW links expire within 72 hours of being sent

11 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11 For Invitations created before 29 January 2014, users will be redirected to the Meeting/Session information page Select View Meeting/Session details, enter password and click Add to My Calendar to download the.ics file

12 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12 Links to recordings created before 29 January 2014 will be expired on 28 February 2014 When an expired link is clicked, the expired link page appears and the new link can be requested An email is sent to the recording owner (Host) Requestor will not receive an email confirming their request Host can email the updated link to the requestor and/or update the link location. Expired link page will not appear when link has been updated successfully “This recording link has expired. Request a new link.” Requestor enters Name and email. Enters a message (optional). Clicks “Request new link”. Email is sent to Host.

13 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13 Host ID: Requestor Name (name@email.com) is requesting the link to your program Name of Program. This is an optional message from the requestor Due to a security enhancement, the previous program link has expired. To share your program, send the new link below to Requestor Name at name@email.com Updated program link: http://sz1web.qa.webex.com/szspt29l/onstage/g.php?PRID=ed8d 37c48c406df1869331f51eaff48b http://www.webex.com Host ID: Requestor Name (name@email.com) is requesting the link to your program Name of Program. This is an optional message from the requestor: Due to a security enhancement, the previous program link has expired. This link appears in the website http://mail.qa.webex.com/showmail.asp?filename=20 To share your program, send the new link below to Requestor Name at name@email.com Updated program link: http://sz1web.qa.webex.com/szspt29l/onstage/g.php?PRID=e d8d37c48c406df1869331f51eaff48b http://www.webex.com Includes Referring URL to allow Host to update original link location with the new link. No Referring URL

14 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14 Your customer received the error message “This support link has expired.” Due to a security enhancement, the previous support link has expired. To help customers use functional live support go here to login and get a new link from the queue %QueueName%. You may also want to update the site with the new link. http://www.webex.com Your customer received the error message “This support link has expired.” Due to a security enhancement, the previous support link has expired. To help customers use functional live support go here to login and get a new link from the queue %QueueName%. You may also want to update the site with the new link. http://www.webex.com On-Screen Customer Message Site Admin Email Support Center Impacts: WebEx recording URLs WebACD live support links WebACD Agent’s Personal Queue URL Customers and Site Admins (Queue creators) are notified of expired live support links. Site Admin receives a link to obtain a new link, along with the appropriate queue name. WebACD Agent Email Text

15 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15 Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 15

16 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16 Review the FAQ and support documents Cryptographic Key Update for WebEx FAQ https://support.webex.com/webex/meetings/en_US/key-modification- update-faq.htm Encourage customer to update their NBR links to minimize disruptions Compatibility period ends 28 February 2014 Updated NBR and Unlisted Program Links Reports are available to Hosts at My WebEx > My Reports > View Old and Updated Links

17 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17 Does this change require a client download? The security updates covered in this presentation do not require a client download or a Productivity Tools client download. Are customers required to update all URLs? There is no specific requirement to update everything however; all links that have not been updated will expire on 28 February, 2014. To prevent any disruption for Hosts and visitors to those links, it is important to update them before expiration. How does this change make recording URLs more secure? URLs will be created using UUID format. This will help improve meeting security and strengthen the security of recorded files. UUID URLs are generated with random numbers that are independent of identifiers that were used previously, like Site ID or MeetingID. UUID stands for Universally Unique Identifier. How far back do URLs need to be updated? Encourage customers to update the most recent, popular or widely-distributed recording links first. Links that were created more than 30 days ago are less likely to require an urgent update. Links that were never shared (emailed, posted to a website, etc.) don’t require an update, but the new link should be used in the event the link is shared at a future date. What if my customer can’t complete all URL updates within 30 days? Links will become invalid (expire) at the end of the 30 day grace period. Visitors to those links will see an “expired link” screen and can request an updated link from the Host. Hosts should update the link location with the new link to prevent additional requests from being triggered.

18 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18 Are meeting invitation URLs affected? Join Meeting URLs will be generated using the UUID format as of January 29 th but existing URLs will continue to work and customers are not required to update meeting invitations. Can I update recording URLs for my customer? The report of old/new recording URLs can only be accessed by the Host who created the recordings. Can we run a URL report and provide it to customers? At this time, there is no internal process for accessing the URL report on behalf of a Host/customer. When will recorded files be created using the new UUID format? The new format for generating URLs goes into effect on January 29, 2014 My customer doesn’t use WebEx recording services. Does this affect them? Customers who do not use WebEx recording services will not be impacted by the changes to WebEx recording links. However; there are additional impacts to.ics files, forgot password links, etc. that could impact them. Review the communication and FAQ carefully to ensure your customers are aware of all changes. Will Expired Link pages remain active indefinitely? Yes. Expired link pages will continue to be displayed for any expired links that have not been updated.

19 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19 Are there any statistics about how often WebEx recordings are accessed? Shared recordings are viewed the most within the first 2 weeks of being posted. Access to recorded files drops off significantly after 2 weeks and dwindles to nearly zero by the 30 day mark. We recommend updating the newest recordings first. Should information about this security update be shared with all users (Hosts)? Yes. Hosts using services that are affected by this updated need to be advised of all impacts. Please note: Sales Center customers will receive a separate communication when this update is applied to their services. Does this change affect Connect, Jabber? At this time there is no impact to the clients for Connect and Jabber. Are Meeting URLs which were scheduled from a mobile device also impacted by this enhancement? No. There is no impact to Meeting URLs scheduled from a mobile device. Does this update affect WebEx Meetings (WX11)? No. WebEx Meetings URLs currently use the UUID format.

20 Thank you

Download ppt "© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. 1 Cryptographic."

Similar presentations

MFA for Business Banking – Security Questions with 2nd Request Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing.

MFA for Business Banking – Security Questions with 2nd Request Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing.
MFA for Business Banking – Security Code Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing these QT sheets.

MFA for Business Banking – Security Code Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing these QT sheets.
MFA for Business Banking – Security Questions with Reset Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing.

MFA for Business Banking – Security Questions with Reset Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing.
Installation & User Guide

Installation & User Guide
Using the Self Service BMC Helpdesk

Using the Self Service BMC Helpdesk
Recruitment Booster.

Recruitment Booster.
HP Support Agreement Manager Tools Support Contract Assistant (SCA) Quick Reference Guide September 2006.

HP Support Agreement Manager Tools Support Contract Assistant (SCA) Quick Reference Guide September 2006.
E-Portfolio July2014 Managing Multi-source Feedback.

E-Portfolio July2014 Managing Multi-source Feedback.
1 Unit & District Tools Phase 1. 2 To access the new Unit and District Tools, you will need to click on the link embedded in the MyScouting Flash page.

1 Unit & District Tools Phase 1. 2 To access the new Unit and District Tools, you will need to click on the link embedded in the MyScouting Flash page.
El Vis – Visman’s Electronic VISitor management system offers a module for Control of Contractors. The system is offered on a secure, maintained and controlled.

El Vis – Visman’s Electronic VISitor management system offers a module for Control of Contractors. The system is offered on a secure, maintained and controlled.
Hidden Features. What will we cover 16 hidden features for Admins Bonus: –2 hidden features for Employers –Live examples!

Hidden Features. What will we cover 16 hidden features for Admins Bonus: –2 hidden features for Employers –Live examples!
Verification of Study Online 0800 88 99 00 | www.studylink.govt.nz Training for Tertiary Education Providers.

Verification of Study Online | Training for Tertiary Education Providers.
Your NEW Social Services Verification Tool

Your NEW Social Services Verification Tool
Sandhills Center Encryption Overview for External Recipients

Sandhills Center Encryption Overview for External Recipients
Members Only & Login Modules Members Only works with the Login module to provide password protection to Web pages and files. Login Groups may be created.

Members Only & Login Modules Members Only works with the Login module to provide password protection to Web pages and files. Login Groups may be created.
Objectives The Government of India and Government of Karnataka has constituted the Private Security Agencies Regulation Act, 2005 and Karnataka Private.

Objectives The Government of India and Government of Karnataka has constituted the Private Security Agencies Regulation Act, 2005 and Karnataka Private.
GSA eBuy Seller’s Tutorial

GSA eBuy Seller’s Tutorial
Find the best way to finance your future 0800 88 99 00 | www.studylink.govt.nz Verification of Study Online Online Institution Interface (OII) Training.

Find the best way to finance your future | Verification of Study Online Online Institution Interface (OII) Training.
Center Accreditation Online System

Center Accreditation Online System
July 11 - September 2 2005 FFIEC Central Data Repository Bank Enrollment.

July 11 - September FFIEC Central Data Repository Bank Enrollment.

Similar presentations

Ads by Google