Skip To Main Content

Data Security Upgrade

Important: 2019 Security Update

UPS will be making changes beginning February 1, 2019 through March 31, 2019 to support enhancing our security. If you have reached this page you are currently using an unsupported cipher to connect.

Effective 02/01/2019, UPS will only accept supported ciphers associated with TLS 1.2.  After that date, any communication requests submitted to UPS using unsupported ciphers may fail.

Upgrades Required

Properly managing customer data is a high priority for UPS, and we work closely with our customers to ensure that critical information is transferred over the Internet using the most current data security standards.

With rapid changes to security requirements, we want to keep you informed of upgrades that will be required in the near future. Your ability to use all of our applications that best meet your business needs is important to us.

Please follow the instructions below for each application to ensure that your systems are up to date.

UPS Internet Shipping, ups.com, and Customers using a UPS Ready Browser Based Solution

Please work to ensure that all UPS Internet Shipping users at your company have their web browsers set to enable TLS 1.2.

To enable TLS1.2 in commonly used browsers, follow these steps:

  • Internet Explorer:In Internet Options, click on the Advanced tab, scroll to the Security section and select Use TLS 1.2. Then click OK.
  • Firefox below version 23:Open Settings. On the Advanced tab, click the Encryption tab. Select Use TLS 1.2, then click OK. 
  • Firefox 23 and above:Firefox 23 and above are configured to communicate with TLS 1.2 by default. 
  • Chrome:In Settings, click "Show advanced settings." Find the Network section, and click "Change proxy settings." Click the Advanced tab. Select Use TLS 1.2, and then click OK. 

Please work with your network team if further analysis of ciphers supported by your browser is needed.   

If you have any technical questions or concerns, please submit your question through the UPS technical support form or call 1-877-289-6418.

UPS CampusShip

Please work to ensure that all UPS Internet Shipping users at your company have their web browsers set to enable TLS 1.2.

To enable TLS1.2 in commonly used browsers, follow these steps:

  • Internet Explorer:In Internet Options, click on the Advanced tab, scroll to the Security section and select Use TLS 1.2. Then click OK.
  • Firefox below version 23:Open Settings. On the Advanced tab, click the Encryption tab. Select Use TLS 1.2, then click OK. 
  • Firefox 23 and above:Firefox 23 and above are configured to communicate with TLS 1.2 by default. 
  • Chrome:In Settings, click "Show advanced settings." Find the Network section, and click "Change proxy settings." Click the Advanced tab. Select Use TLS 1.2, and then click OK. 

Please work with your network team if further analysis of ciphers supported by your browser is needed.  

If you have any technical questions or concerns, please submit your question through the UPS technical support form or call 1-877-289-6418.

UPS Developer Kit APIs

UPS® Developer Kit Application Programming Interfaces (APIs) are used to integrate UPS functionality into your website and applications.

  • Please ensure your application supports one of the following Ciphers:
    • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
    • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
    • TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
    • TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
    • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
    • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
    • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
    • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
    • TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
    • TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
    • TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
    • TLS_DHE_RSA_WITH_AES_128_GCM_SHA256

If you have any technical questions or concerns, please submit your question through the UPS technical support form or call 1-800-247-9035.

UPS Electronic Manifesting Tool

Electronic Manifesting Tool (EMT) is used to transmit your Package Level Detail (PLD) to UPS.

Please ensure that all EMT users at your company enable TLS 1.2.

When your application creates a connection to UPS, it is creating an HTTPS socket connection to the UPS server. Please ensure that the socket connection in your application is opened to Port 443, with TLS 1.2 enabled. If you have Java enabled, you must be using version 1.7 or higher to use TLS 1.2.

Your proxy administrator may be able to assist you with updating this connection.

If you have any technical questions or concerns, please contact our support team at hasupport@ups.com. If you are using software from one of several UPS Ready® program providers, contact your provider for any updates, if necessary.

UPS Host Manifest Upload

Host Manifest Upload (HMU) is used to transmit your Package Level Detail (PLD) to UPS.

Please ensure that all HMU users at your company enable TLS 1.2

This will require you to ensure that all HMU users at your company have their web browsers set to enable TLS 1.2.

To enable TLS 1.2 in Internet Explorer, follow these steps:

  • In Internet Options, click on the Advanced tab
  • Scroll to the Security section
  • Select Use TLS 1.2 then click OK. 

If you have any technical questions or concerns, please contact our support team at hasupport@ups.com.

WorldShip

Information regarding TLS 1.2 will be posted for WorldShip® users on the WorldShip Message Center.

View the WorldShip Message Center