The Authorize.Net Developer Blog

Posts from Authorize.Net employees, community members and experts about integrating with the Authorize.Net Payment Gateway: sample code, tutorials, and problem-solving techniques, just to name a few.

3-DES Disablement in Sandbox Planned for July 30, 2016

by Administrator Administrator ‎07-14-2016 08:35 AM - edited ‎07-19-2016 10:28 AM (44,780 Views)

In an effort to maintain the highest levels of security for all server-to-server communications with the Authorize.Net platform (both transactional and otherwise), we will be ending support for 3-DES cipher suites in the sandbox on July 30, 2016.


Specifically, we will be ending support for the cipher, TLS_RSA_WITH_3DES_EDE_CBC_SHA, also known as DES-CBC3-SHA or Cipher 0x0a.


We will announce a date for disabling 3-DES ciphers in Production, at a later time.


If you have a solution that relies on 3-DES ciphers to communicate with our servers, please update it to a current, high-security cipher as soon as possible. Please review our API best practices blog post for more information.