Legacy SOAP/XML & TLS Compliance
TLS 1.1 and 1.2 minimum requirements for compliance
Our customers and vendors need to continue working on being TLS 1.2 compliant. If you were unable to process payments using a software solution, please contact your vendor to discuss how your software is currently leveraging TLS. Your vendor may suggest possible upgrades to those solutions to ensure that you can use the TLS 1.2 protocol. Paya has updated our Donate Now, Shopping Cart and Mobile products to be TLS compliant. No further action is needed for these products.
You will need to enable TLS 1.1 and 1.2 security protocols on your servers and workstations. The minimum operating systems that support TLS 1.1 and 1.2 options are Windows Server 2008 R2, and Windows 7. Please ensure that all updates and patches have been applied. If you are using Linux, please check the Open SSL changelog for the version of your Linux OS that will support TLS 1.2.
For more information about how to enable TLS 1.1 and 1.2 for Windows operating systems, please refer to this link. Paya has built a program that simplifies the necessary Registry Edits mentioned in the Microsoft article; please click here to download this program.
Disclaimer: Usage of these programs should be limited to systems administrators because they could impact system critical services and applications. Specific services and applications may not be capable of communication over certain TLS protocols; you may need to contact your vendor for TLS 1.1/1.2 compatible version of their solutions.
For further detailed information about the transition for TLS 1.2, please review this article from the PCI SSC.
For guidelines on selection, configuration and use of TLS implementations, please review this help document from National Institute of Standards and Technology.