Selima sites running the FBI Client software should avoid any upgrade of Java 1.6 to versions after update 18.

A recent security fix made in versions after that will prevent certain routines of the FBI client software connecting to the service correctly. It will deliver an "Unexpected failure message" with regard to validation failing, and inform the user that MD2withRSA is disabled.

Sun have removed MD2WithRSA from their list of permissible security implementations, and as the service contains a root security certificate based on an outlawed standard, Java (update 20) will not allow connection to this service.

Customers should avoid upgrading to versions of Java beyond 1.6 Update 18 until HMRC has released an update to the TPVS security certificates governing the affected SSL handshaking.