3DES Deprecation

AbishekV · ‎05-13-2024

Hi all,

Can someone explain what is partial and complete deprecation and what are legacy fields? Also what are the outcomes if I opt out off 3DES deprecation and how do I prevent it?

Mahathi · ‎05-15-2024

Hi @AbishekV ,

Please see if the following information is useful:

Partial Deprecation: In ServiceNow, partial deprecation typically involves marking certain features, methods, or functionalities as deprecated in the platform's documentation or through warning messages in the development environment. This means that while the feature is still available for use, it's no longer recommended because it may be removed or replaced in future releases. Developers are encouraged to transition to alternative approaches or features.

Complete Deprecation: When a feature or functionality is completely deprecated in ServiceNow, it means that it has been removed from the platform entirely. Any code or configurations relying on the deprecated feature will no longer work and must be updated to use supported alternatives. ServiceNow typically provides advance notice and guidance on deprecated features to help users migrate to newer solutions.

Legacy Fields: Legacy fields in ServiceNow refer to fields within tables or records that are outdated or no longer actively used but are retained for backward compatibility or historical reasons. These fields may have been replaced by newer fields or functionalities but are kept to support existing data or integrations. Legacy fields can clutter the user interface and may impact performance, so it's often recommended to clean them up when possible.

Outcomes of Opting Out of 3DES Deprecation in ServiceNow:

Opting out of 3DES deprecation in ServiceNow could have several consequences:

Security Risks: Continuing to use 3DES encryption poses security risks as it is considered less secure compared to modern encryption algorithms like AES. This could potentially lead to data breaches or unauthorized access to sensitive information.
Non-compliance: Depending on your organization's industry or regulatory requirements, using deprecated encryption standards like 3DES may lead to non-compliance with data security standards such as GDPR or PCI DSS. This could result in legal consequences or financial penalties.

Preventing 3DES Deprecation in ServiceNow:

To prevent the adverse outcomes associated with 3DES deprecation in ServiceNow, you can take the following steps:

Upgrade Encryption Algorithms: Transition to more secure encryption algorithms supported by ServiceNow, such as AES.
Review Configuration and Code: Identify any instances where 3DES encryption is being used within ServiceNow configurations, scripts, or integrations, and update them to use supported encryption methods.
Stay Informed: Keep track of ServiceNow's release notes and announcements to stay informed about upcoming changes, including deprecations related to encryption standards.
Testing: Thoroughly test your ServiceNow instances after making any changes related to encryption to ensure that all functionalities are working as expected and that data remains secure.

By following these steps, you can ensure that your ServiceNow instance remains secure and compliant with industry standards while avoiding the risks associated with the deprecation of outdated encryption algorithms like 3DES.

Please mark helpful if it helped answer your question.

Thanks,
Mahathi

View solution in original post

JC Moller · ‎03-17-2025

Have you all noticed that your instance has two critical updates in the newly updated Security Center. Servicenow now adds manual update tasks into the Security Center. Each task has a documentation part and a list of steps to follow.

You will have two update the tasks here also, if you have not yet worked on the deprecation of GlideEncrypter API and 3DES encryption. You should also update here the changes you make into the system.