As a reminder, the PCI Security Standards Council has mandated that all instances of SSL and early TLS must be upgraded to a secure version of TLS by June 2018. To provide our customers with the highest levels of data security, we will be making several changes that may impact the way you interface with our Gateway. To protect against vulnerabilities in older protocols, after March 31, 2018 all customers will be required to support TLS v1.2 in order to connect to the Payment Gateway.
After March 31, 2018, we will disable TLS v1.0 and v1.1 protocols for all connections to the Payment Gateway and associated online business tools. In addition, TLS v1.0 will be disabled for the eSupport portal. The list of ciphers that will be supported after this date are available frequently asked questions and answers, and customers will need to support one of the available ciphers from this list to continue connecting to the Payment Gateway. Users will be required to use a TLS v1.2-compatible browser to ensure they can continue to access the online tools. We will disable TLS v1.0 and v1.1 in the UAT environment in January 2018 to allow for customer testing.
If you have any questions regarding this change please contact us.