Effective April 15, 2018, Blue State Digital will no longer support TLS 1.0 or SSLv3 for its BSD Tools and CallOut applications. Any web browsers or software accessing the BSD Tools API that do not support TLS 1.1 or TLS 1.2 will no longer work after this date.
Why Is BSD Making This Change?
This change is mandated by the PCI Security Council and affects service providers processing or transmitting credit card data, including BSD. The PCI Security Council establishes rules on which technologies are acceptable for use in transmitting cardholder data. They have explicitly identified TLS 1.0 as no longer being a strong form of encryption because it is vulnerable to multiple known attacks. In general, BSD is in the process of migrating all customers to more secure hosting solutions.
What Do I Need To Do?
A member of BSD’s Client Services team will be in touch with steps on how to migrate (more information). No action is required until you are contacted. However, if you’d like to begin the migration process earlier, please contact our Client Services team at email@example.com. For most customers, following the steps provided by the Client Services representative will be the only action required.
Customers who maintain API integrations between the BSD Tools and third-party services may also be required to take action. Specifically, you must ensure that your software accessing BSD APIs support TLS 1.1 or TLS 1.2. Software that is running a version of OpenSSL 1.0.1 or newer will meet the minimum requirements to successfully connect. Software running OpenSSL 1.0.0h or older may experience errors.
As always, our Client Services team at firstname.lastname@example.org is ready to assist with any inquiries.
Didn't find the answer you were looking for?
Email us at email@example.com