Improved Data Transmission Speed and Security with TLS 1.3
Always adopting the latest standards, Salesforce now supports Transport Layer Security (TLS) 1.3 for outbound HTTPS callouts from the Salesforce Platform. TLS 1.3 improves security with stronger encryption methods. This version also reduces the time it takes to establish secure connections with a simplified handshake process. This change has no impact on existing callouts that require TLS 1.2
How: It is recommended that this change is first tested in a sandbox before updated in production. To use TLS 1.3 for an HTTPS callout, work with the receiving endpoint owner to enable TLS 1.3 on the endpoint. Optionally, after the callout successfully uses TLS 1.3, work with the owner to disable TLS 1.2 on the receiving endpoint
New Hyperforce Orgs Use Salesforce Edge Network
Starting October 4, 2024, new Hyperforce orgs use Salesforce Edge Network by default for a better network experience including improved download times for users around the globe. To opt and org out of Salesforce Edge Network, contact Salesforce Customer Support
Security Was Tightened for the retUrl Parameter for My Domain Redirects
Security has been improved when retUrl parameter is added to a My Domain URL so Salesforce redirect the browser only to the retUrl and block any further redirects. Previously, if the retUrl parameter itself redirected to other URLs, the browser was redirected again
Violation Type Label Was Changed for Blocked Redirections
The violation type for blocked redirections in the Trusted URL and Browser Policy Violations List was updated to Blocked Redirection. The previous label was External Redirection
