Text Size

A A A  

QRXS Security

Required Java Update

The NPDB will disable the TLS 1.0 encryption protocol on September 12, 2016. Systems must have TLS 1.1 or TLS 1.2 enabled in order to access any NPDB web applications. This includes internet browser access to IQRS and Java access to QRXS. The NPDB is making this change to maintain the highest security standards and updated compliance requirements from the PCI Security Standards Council.

This enhancement may affect some website visitors who are using older browsers that are not compatible with the updated encryption protocol. If you are using a browser that is not compatible, you may not be able to access any secure website pages, such as the sign-in page for your NPDB user account. This will mostly affect those who use Internet Explorer (IE). Firefox, Chrome and Safari automatically upgrade users to their latest version.

Querying and Reporting XML Service (QRXS): Java 6 and 7 will no longer be supported. Clients must use Java 8.

IP Verification

The NPDB will be introducing security enhancements in the coming months to ensure that your QRXS transactions can be verified as originating with your organization. This process will involve a system that will store IP addresses for computers that you have "whitelisted" as belonging to your organization. Initially, we will add these computers to your whitelist automatically. Eventually, your IQRS administrator will be responsible for maintaining this list. A new page in the IQRS has been created to enable the Data Bank administrator to easily complete this task.