Author Archives: nodustech
Will Your Payment Processing Break Due To Mandatory Security Update? – 2017 Deadline Approaching for TLS 1.2 Requirement
The PCI Security Council has mandated that online merchants who accept credit cards must upgrade from the older SSL and early TLS security protocols, to the newer TLS 1.2 protocol. The required implementation dates to remain in compliance have changed multiple times, causing merchant confusion. To further this confusion, individual gateways and processors have their own implementation timelines for TLS 1.2 support.
Due to recent high profile attacks, some vendors have decided to expedite the transition to TLS 1.2 and completely end support of the older, less secure protocols. This was primarily done because of the known risks of the older security protocols and the PCI Security Council’s assessment of the risk to merchants. The PCI Security Council has stated, “The vulnerabilities within SSL and early TLS are serious and left unaddressed put organizations at risk of being breached.” Because of these known risks, payment technology vendors have become more aggressive in their implementation timeframes and are in the process of deprecating the older protocols beginning in 2017.
One such company is PayPal. PayPal just recently turned off support of the older protocol for test environments and will completely stop supporting the older protocols by June 30, 2017. FOR MERCHANTS USING A PAYPAL PAYMENT GATEWAY WHO HAVE NOT UPGRADED THEIR SYSTEMS TO SUPPORT TLS 1.2, CREDIT CARD PROCESSING SERVICES WILL NO LONGER WORK AFTER THAT DATE.
Dates to know:
- PCI Security Council original date of TLS 1.2 compliance was 2016
- PCI Security Council new date of TLS 1.2 compliance is June, 2018
- PayPal testing environment ended support of older protocols on February 15, 2017
- PayPal production environment ends support of older protocols on June 30, 2017
How do you ensure you will be able to accept credit card payments after the June 30, 2017 deadline? The first thing merchants should do is contact their systems providers to determine all of the payment gateway connections their solution employs. Merchants should then verify that their solution has been upgraded to support the TLS 1.2 protocol. This often times reveals a spider web of connections. Many solution providers support a variety of gateways to reach a particular processing platform.
In the example of PayPal, merchants may be unaware that their payment acceptance solution could utilize technology from PayPal even if they do not accept PayPal as a form of payment. PayPal Holdings, Inc. has acquired various payment technologies and companies (i.e. PayFlow Pro, BrainTree, Venmo, etc.) that many payment solutions employ in the background. If a merchant’s solution utilizes a PayPal gateway and hasn’t been upgraded to support TLS 1.2, it will stop functioning after the June 30, 2017 date.
To avoid credit card acceptance interruption and protect yourself against malicious attacks, you should:
- Upgrade your systems to support the latest security protocol TLS 1.2
- Start your upgrade process today. System upgrades take time and a backlog is already forming with many vendors. This will result in many merchants unable to accept credit card payments after June 30, 2017
- Nodus customers should contact Nodus Support to discuss their upgrade options and ensure that the software versions they are using support TLS 1.2
- Migrating from SSL & Early TLS webinar by PCI Security Standards Council
- Date Change for Migrating from SSL and Early TLS
- PayPal TLS 1.2 and HTTP/1.1 Upgrade Microsite
- Nodus TLS 1.2 Security Update
Chester Ritchie is the President of Nodus Technologies (http://www.nodus.com). Nodus is a certified Microsoft Gold Level Partner for payment software within the Microsoft Dynamics family of accounting systems. Nodus products allow users of Great Plains (GP), Solomon (SL), and AX to accept electronic payments inside of the accounting system. Accounting entries related to payments are automated and cash flow is increased.
January 6, 2017 by Chester Ritchie
Microsoft recently announced the discontinuation of the Dynamics Online Payment Services. Effective January 1, 2018, users of this service will no longer be able to process credit card payments within Microsoft Dynamics AX, Microsoft Dynamics NAV, Microsoft Dynamics GP, Microsoft Dynamics RMS, Microsoft Dynamics POS 2009, and Microsoft Office Accounting.
To mitigate any potential business impact due to the discontinuation of this product, Microsoft is recommending existing customers search for alternative payment products from Dynamics Independent Solution Providers (ISVs) such as Nodus.
Nodus is the leading provider of PCI certified electronic payment processing modules for Microsoft Dynamics. In addition to the core credit card processing functionality provided by Microsoft Dynamics Online Payment Services, merchants choose Nodus for security and additional accounting automation. The Nodus payment processing gateway can be used to replace Microsoft Dynamics Online Payment Services with minimal interruption to your business.
Nodus products are fully integrated into Microsoft Dynamics. Nodus has been the PCI certified payment solution for Microsoft Dynamics accounting systems for over 14 years. In addition to providing a secure credit card processing solution, Nodus payment solutions integrate with your accounting system to automate accounting entries, provide lowest rates for B2B transactions, and get you paid faster by automating A/R via our online bill pay module.
For more information on how to upgrade your Dynamics Online Payment Services to PCI compliant credit card processing software from Nodus, please visit http://www.nodus.com or call us at 909-482-4701.
Credit card processing solutions have become an integral part of most business concerns. However, with a large number of such services available in the market, it can become a bit tricky to find the right one that will justify its hiring. Therefore, companies need to ponder over several factors, which will help them in finding just the right credit card processing solution for their business. Companies first need to find out about the average approval rating of any credit card processing service. This must include the percentage of approved applicants against the total number of applicants and the average speed of processing. An effective credit card processing service will enable a maximum number of approvals at minimum processing time and without charging any additional fees. Apart from the processing time and efficiency, the cost of availing the service every month is going to be an important determinant. A low monthly charge will help in bringing down the overhead costs considerably.
The initial cost need to be affordable, as well. It should not cost too much to open any new merchant account or payment getaway. The efficiency in setting up a new business account is important in determining which credit card processing service to opt for. Accessible and prompt customer service should be available while hiring any credit card processing service because it is an important aspect of boosting customer satisfaction. The customer service needs to be prompt and provide useful information. The number of internet-based features such as providing more than one type of virtual terminals needs to be a part of the deciding factors. The credit card processing service comes helpful in providing customers with greater flexibility and options regarding payment. Thus, it is possible to choose the right credit card processing service to maximize any business. Keeping these factors in mind can help business concerns in selecting the right one for them.