“Let security be part of your development practice”
What is TLS?
TLS stands for “Transport Layer Security.” It provides privacy and data integrity between two communicating applications. It is used to authenticate one or both applications, and protect the confidentiality and integrity of information that passes between them. Overtime, different versions of TLS have been released; TLS 1.2 was released in August 2008, it addresses many vulnerabilities identified in the earlier versions.
Why you need to upgrade?
PCI DSS standard version 3.1 has been retired in October 2016 and the new PCI DSS version 3.2 mandates using TLS 1.2 (or higher) protocol and makes all older TLS versions (e.g. SSL v3, TLS 1.0, TLS 1.1) non-compliant. The standard requires the new TLS requirement to be implemented by June 2018.
In preparation for this requirement, Visa plans to disable TLS 1.0 and TLS 1.1. We will be disabling these in Sandbox prior to production to give you an opportunity to test these in Sandbox and ensure you are using the TLS 1.2.
Please refer to compatibility guidelines for the most popular Languages and Libraries: