Paypal TLS 1.2 Migration Info

Paypal TLS 1.2 Migration Info

 

In June 2017, PayPal will be migrating all their systems (payment gateways / endpoints) to use TLS 1.2. This security protocol support change is to ensure optimum security for payment transactions made through their payment network.

The change to no longer support TLS 1.0 and TLS 1.1 does not affect the Site Store Pro shopping cart directly but may affect your server/hosting environment.

Site Store Pro does not hardcode any TLS or SSL version preference into any of our code. Therefore, if your server is properly configured to use TLS 1.2 (i.e. TLS 1.0 and TLS 1.1 have been disabled on the server), you will not have any issues when PayPal performs the transition to TLS 1.2 only.

Note: the TLS/SSL settings are server-wide and not per individual site.

If you are on a shared hosting platform, your hosting provider should have already disabled TLS 1.0 and TLS 1.1 as per best security practices (and PCI requirements).

However, if you are running your own VPS or dedicated server, your server administrator might need to modify your server security | SSL cipher settings to ensure that TLS 1.2 is being used for secure connections.

If Site Store Pro is maintaining your server, this would have been done quite a while ago since it was required for full PCI compliance at the end of 2016 (Most sites were set to use TLS 1.2 around August 2016). If you have another provider or contractor maintaining your server, you should inquire that TLS 1.0 and TLS 1.1 have been disabled however.

Unless Site Store Pro is maintaining your VPS server directly, you will need to contact your hosting provider to check on the security settings. Site Store Pro cannot make the change for you on a shared hosting platform and/or a VPS that is not managed by our staff.

More information on the PayPal TLS 1.2 / http 1.1 migration is available at :

https://www.paypal.com/webapps/mpp/tls-http-upgrade


Search SiteStorePro.com

Subscribe To Our Email List