If you provide goods and services online (ecommerce), you have a lot to manage just to keep this revenue path open. Navigating these waters can be challenging to say the least, not to mention expensive. There are a number of legitimate resources you can pay for to help cover your security requirement, but they should be explored in detail to ensure you aren’t being taken advantage of too.
Over the past 12 months or more, you have likely seen a number of notifications regarding a variety of security protocols for ecommerce. One of the most notable security upgrades is the upcoming requirement to disable TLS 1.0. You might not even know what TLS 1.0 is. Simply put, TLS (Transport Layer Security) is an encryption protocol which was developed to provide secure transactions over the internet. Secure, meaning the data is encrypted to prevent it from being intercepted or interpreted by unintended parties.
As of June 30, 2016, TLS 1.0 is required to be disabled on all websites for customers who use Authorize.net as a credit card transaction processor, because it is an older protocol which has some vulnerabilities in today’s online markeplace. Authorize.net has been sending notifications occasionally over the last year in preparation for this change.
Most end users will not be affected, as there is a relatively small number of people who still use a browser out of date enough to use TLS 1.0, mostly users with Internet Explorer 7-10 (most versions have been updated since 2013-2014), and some older versions of Android browsers. This means that after June, some users will be required to upgrade their browsers in order to process transactions online, so you should be ready to field some of those questions if they come up.
At Cazbah, our team is continuously working to stay up to date with all of the current security requirements, in order to ensure PCI compliance for our customers. It is one more of the frequently unseen benefits of a high quality third-party website provider. Contact us today to discuss your needs, and find out how we can help you not only with your website’s security, but your online marketing needs.
References for additional information:
PCI Compliance FAQs: https://www.pcicomplianceguide.org/pci-faqs-2/
5 Best Practices For securing your small biz: https://www.pcicomplianceguide.org/5-best-practices-for-securing-your-small-biz/