TLS 1.2: Security update to the CRA's online services

On November 21^st 2015, the Canada Revenue Agency (CRA) will implement another security update to its online services. This update will ensure the safest possible transmission of data between TaxCycle, DoxCycle, your web browser and the CRA’s online services. 

Affected services

This security update impacts the following transmission services from TaxCycle:

• EFILE
• T1135
• T1013
• SEND
• Corporate Internet Filing
• Web Access Code Request

Web browser-based services impacted by this update include:

• Slips filing, such as T4 slips 
• Tax Data Download (TDD)
• Represent a Client (RaC)
• T2 COR filing

Since version 4.5, TaxCycle has been using the latest security protocol (Transport Layer Security [TLS] 1.2) as required by the CRA. The CRA is still accepting content using older security protocols, but this will stop on November 21^st. 

Windows Vista® and Windows Server® 2008

This security update impacts Windows Vista® and Windows Server® 2008. From November 21^st 2015, neither operating system will be able to transmit returns. Depending on which web browser you use, for example Internet Explorer, access to websites such as Represent a Client will also be blocked. 

It is highly recommended to upgrade from either of these operating systems. 

Windows 7® and Windows Server® 2008 R2

Both Windows 7® and Windows Server® 2008 R2 include the necessary security protocols, but they may be disabled by default. To enable TLS 1.2, please review the following to check if TLS 1.2 is enabled on your operating system:

Important: TLS 1.2 is unavailable on Windows Vista® and Windows Server® 2008.

Internet Explorer

1. Open Internet Explorer.
2. Press Alt+T and select Internet Options.
3. Select the Advanced tab.
4. Scroll down to the Security section.
5. Locate and check Use TLS 1.1 and TLS 1.2.
6. Then, press the OK button.
7. Close your browser to enable the new settings.

Google Chrome

1. Open Google Chrome.
2. Press Alt+F and select Settings.
3. Scroll down and select Show advanced settings...
4. Scroll down to the Network section and click on Change proxy settings...
5. Select the Advanced tab.
6. Scroll down to the Security section.
7. Locate and check Use TLS 1.1 and TLS 1.2.
8. Then, press the OK button.
9. Close your browser to enable the new settings

Firefox

1. Open Firefox.
2. Type “about:config” in the URL bar and press Enter.
3. Scroll down to security.tls.version.max and press Enter.
4. Set the value to 3.
5. Then, press the OK button.
6. Close your browser to enable the new settings.

Opera

1. Open Opera.
2. Press Ctrl+F12.
3. Click on Security.
4. Click on Security Protocols...
5. Check on Enable TLS 1.1 & TLS 1.2.
6. Press the OK button.
7. Then, press the OK button.
8. Close your browser to enable the new settings

Safari

There are no options for enabling SSL protocols. If you are using Safari version 7 or greater, TLS 1.2 is automatically enabled.