A. OKX to Support HTTP2 Protocol:
1. In order to enhance user experience, OKX website and API will start to support HTTP/2 from 06:00 Feb 20, 2020 (UTC). HTTP/2 is a simpler, more efficient, and powerful protocol which has been adopted by many applications/systems on both server and client side..
2. Client side should not be affected. If your client application is incompatible with HTTP/2, system will automatically switch to HTTP/1.1 for communication.
B. OKX to Terminate Usage of TLS/1.0 and TLS/1.1 Protocols:
1. Since there’re security vulnerabilities in TLS/1.0 and TLS/1.1, OKX website and API will no longer support the 2 protocols from 06:00 Feb 20, 2020 (UTC) to ensure security of user transaction and asset.
2. Impact on client side: Users who use TLS/1.0 and TLS/1.1 to visit our website and OpenAPI will be denied access. Please upgrade to TLS/1.2 in advance to avoid any impact for your trading experience.
3. Compatibility between related client side applications and TLS/1.2
Application |
Version |
Compatibility Details |
Java |
Java 8 (Oracle) or above |
Compatible with TLS/1.2 by default |
Java 7 (Oracle) |
Incompatible with TLS/1.2 by default. You are advised to upgrade to Java 8 or above or download Bouncy Castle to resolve the incompatibility. If you are unable to upgrade the application, you can configure the compatibility settings as follows: 1. -Dhttps.protocols=TTLSv1.2 (applicable to HttpsURLConnection); or 2. Enable TLS1.2 on SSLSocket and SSLEngine created in the source code. |
|
Java 6 (Oracle) |
Incompatible with TLS/1.2. You are advised to upgrade to Java 8 or above or download Bouncy Castle to resolve incompatibility. |
|
Dot NET |
Dot NET 4.6 or above |
Compatible TLS/1.2 by default. |
NET 4.5 to 4.5.2 |
Incompatible TLS/1.2 by default. TLS/1.2 can be directly enabled in the source code.
You are advised to enable SecurityProtocolType.Tls12 via System.Net.ServicePointManager.SecurityProtocol. Take C# as an example: System.Net.ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls12 | SecurityProtocolType.Tls; |
|
Dot NET 4.0 |
Incompatible TLS/1.2 by default. You are advised to upgrade to the latest version and modify the registry to resolve the incompatibility as follows: Set SchUseStrongCrypto DWORD as 1 (create if absent) at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319" and "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v4.0.30319" |
|
Dot NET 3.5 or below |
Incompatible with TLS/1.2. You are advised to upgrade to the latest version. |
|
Python |
Python 2.7.9 or above |
Compatible TLS/1.2 or above by default |
Python 2.7.8 or below |
Incompatible with TLS/1.2. You are advised to upgrade to the latest version. |
|
Ruby |
Ruby 2.0.0+OpenSSL 1.0.1 |
Compatible with TLS/1.2 or above by default |
Ruby 1.9.3 or below |
Incompatible with TLS/1.2. You are advised to upgrade to the latest version or download patches. |
|
Nodejs |
Nodejs |
All versions are supported |
Golang |
Golang1.7.4 or above |
Compatible with TLS/1.2 by default |
Chrome |
Chrome 38 or above |
Compatible with TLS/1.2 by default |
Chrome 30 to 37 |
Compatible on Windows XP SP3, Vista or above (Desktop), OS X 10.6 (Snow Leopard) or above (Desktop) or Android 2.3 (Gingerbread) or above (Mobile). |
|
Chrome 29 or below |
Incompatible with TLS/1.2. You are advised to upgrade to the latest version. |
|
Firefox |
Firefox 27 or above |
Compatible TLS/1.2 by default |
Firefox 24 to 26 |
Compatible but not by default. Enter about:config and set security.tls.version.max config as 3 to enable TLS/1.2. |
|
Firefox 23 or below |
Incompatible with TLS/1.2. You are advised to upgrade to the latest version. |
|
Safari |
Safari 7 or above (Desktop) on OS X 10.9 (Mavericks) or above |
Compatible with TLS/1.2 by default |
Safari 6 or below (Desktop) on OS X 10.8 (Mountain Lion) or below |
Incompatible with TLS/1.2. |
|
Safari 5 or above (Mobile) on iOS 5 or above |
Compatible with TLS/1.2 by default |
|
Safari (Mobile) on iOS 4 or below |
Incompatible with TLS/1.2 |
|
IE |
Microsoft Edge (Desktop) and IE 11 (Mobile) |
Compatible with TLS/1.2 by default |
IE 8, 9 and 10 (Desktop) |
Incompatible with TLS/1.2 by default. Please enable TLS 1.2 encryption on Internet Explorer. |