3-DES Disablement in Sandbox Planned for July 30, 2016

by Moderator Moderator ‎07-14-2016 08:35 AM - edited ‎07-19-2016 10:28 AM (3,407 Views)

In an effort to maintain the highest levels of security for all server-to-server communications with the Authorize.Net platform (both transactional and otherwise), we will be ending support for 3-DES cipher suites in the sandbox on July 30, 2016.

 

Specifically, we will be ending support for the cipher, TLS_RSA_WITH_3DES_EDE_CBC_SHA, also known as DES-CBC3-SHA or Cipher 0x0a.

 

We will announce a date for disabling 3-DES ciphers in Production, at a later time.

 

If you have a solution that relies on 3-DES ciphers to communicate with our servers, please update it to a current, high-security cipher as soon as possible. Please review our API best practices blog post for more information.