Menu

Vantiv, now Worldpay ending support of legacy encryption methods and weak encryption cipher suites in June 2018

 

Providing efficient and secure methods of processing payment transactions to our clients is a top priority for Worldpay. As part of these efforts, Worldpay will discontinue support of legacy encryption methods, such as Secure Socket Layer version 3 (SSLv3) and early versions of Transport Layer Security (TLS).

The PCI Security Standards Council has declared that SSLv3 and early versions of TLS no longer meet minimum security standards, due to security vulnerabilities for which there are no fixes. SSLv3 and early versions of TLS are network protocols that are used to encrypt and protect Internet communications. SSLv3 has been widely used for over 20 years; however, more than 10 years ago it was superseded by TLSv1, which has since been superseded by TLSv1.2.

Worldpay will end support of legacy network protocols by June 30, 2018.

When Worldpay ends its support of SSLv3 and early TLS, customers that continue to use these protocols will no longer be able to connect to Worldpay using Internet-based services or eCommerce-type applications. In addition, Worldpay will stop supporting weak encryption cipher suites, such as Data Encryption Standard (DES) and Triple Data Encryption Standard (3DES or TDEA).

Merchants and Partners should be in the process of disabling legacy protocols and enabling support of TLSv1.2 for communication with Worldpay platforms prior to the June 2018 date.

For encryption, Worldpay will only support cipher suites based on Elliptic Curve Diffie-Hellman (ECDHE) and RSA key exchange, Advanced Encryption Standard (AES), and Secure Hash Algorithms (SHA). A list of supported ciphers in order of preference is below:

Cipher ID

Cipher Name

c030

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

c02f

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

c028

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384

c014

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

c027

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256

c013

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA

009d

TLS_RSA_WITH_AES_256_GCM_SHA384

009c

TLS_RSA_WITH_AES_128_GCM_SHA256

003d

TLS_RSA_WITH_AES_256_CBC_SHA256

003c

TLS_RSA_WITH_AES_128_CBC_SHA256

0035

TLS_RSA_WITH_AES_256_CBC_SHA

002f

TLS_RSA_WITH_AES_128_CBC_SHA

 

Terminal Merchants

For terminals identified as requiring a software download in order to support the minimum network encryption protocol, merchants should visit https://www.vantiv.com/download and follow the Full Download steps for their specific terminal model. If merchants require assistance with the download process, they may contact our technical support team at 888-720-6822.

It’s important that merchants complete the terminal download process as soon as possible. Merchants that have not completed the necessary software download prior to the deadline will not be able to communicate with Worldpay processing platforms.

Worldpay is committed to maintaining a high level of security for our customers and aligning with industry standards and best practices for information security. Thank you for your help to keep your processing secure, if you have any questions please contact your Relationship Manager.

 

Get advantages for your business now