Overview: TLS (Transport Layer Security) is the protocol that provides connection security, authentication and the negotiation of encryption information between the browser and our servers. Early versions of TLS (versions 1.0 and 1.1) are no longer considered to be secure and PCI DDS requirements mandate that all early TLS versions must be disabled by June 30th, 2018 due to the many vulnerabilities associated with it. We are getting ahead of this deadline to allow you time to work through any issues with custom integrations and etc. Starting May 11, 2018, AmeriCommerce will begin the process of disabling early TLS connections. Once disablement occurs, apps and integrations still using insecure versions of TLS will no longer be able to connect to AmeriCommerce.
What you need to do: Please update any software you use to connect to your store's API to use TLS 1.2 (or higher). If you're using an application or integration developed by a third-party, contact the third-party and ask if their app connection has TLS 1.2 enabled. If the third-party application is using an outdated TLS connection (1.0 or 1.1), request that they update their TLS connection as soon as possible. Any API Applications or Integrations using TLS 1.0 or TLS 1.1 will not be able to connect to AmeriCommerce and will stop working on May 11th. This applies to any application or integration that sends and receives data to and from AmeriCommerce. For more information on upgrading connections to TLS 1.2, see: General Instructions on Upgrading to TLS 1.2.
Post is closed for comments.