SSL and Outdated TLS(1.0 and 1.1) for Web Service client application on .Net 3.5

后端 未结 4 556
情书的邮戳
情书的邮戳 2021-02-05 21:23

As per PCI, we need to stop using SSL and TLS(1.0 and 1.1 in certain implementation) from June 30th 2016 as per http://blog.securitymetrics.com/2015/04/pci-3-1-ssl-and-tls.html

4条回答
  •  太阳男子
    2021-02-05 21:30

    Any communication channel that currently uses SSL/early TLS or that is willing to accept them on negotiation and that is part of the cardholder data environment as a security control needs to be changed such that it will only use TLS 1.1 (with an approved cipher suite) or above.

    You need to recompile under .Net 4.5 or greater (TLS 1.2 is not enabled by default so code changes are needed) or use a 3rd party library that supports the required protocols.

    Note that if you know your system is using SSL/early TLS you must created a risk mitigation plan/document.

    INFORMATION SUPPLEMENT Migrating from SSL and Early TLS

提交回复
热议问题